Home    |    View Topics    |    Search    |    Contact Us    |   



Category:   Application (Security)  >   Outpost Security Suite Vendors:   Agnitum, Ltd.
Outpost Security Suite Lets Local Users Bypass Anti-Malware Protection
SecurityTracker Alert ID:  1023967
SecurityTracker URL:
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  May 10 2010
Impact:   Modification of system information
Exploit Included:  Yes  
Version(s): Pro, 7.0.3330.505.1221 BETA
Description:   A vulnerability was reported in Outpost Security Suite. A local user can bypass certain anti-malware protection mechanisms.

A local user can load a specially crafted application to bypass the System Service Descriptor Table (SSDT) hooking anti-malware checks. The application can call a system service with legitimate parameters and then, after the hook handler has validated the parameters, switch certain arguments to execute malicious code without detection. reported this vulnerability.

The original advisory is available at:

Impact:   A local user can bypass certain anti-malware protection mechanisms.
Solution:   No solution was available at the time of this entry.
Vendor URL: (Links to External Site)
Cause:   State error
Underlying OS:  Windows (Any)

Message History:   None.

 Source Message Contents

[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, LLC