Published: 23/10/2007 Updated: 29/07/2017

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Speedfan.sys in Alfredo Milani Comparetti SpeedFan 4.33, when used on Microsoft Windows Vista x64, allows local users to read or write arbitrary MSRs, and gain privileges and load unsigned drivers, via the (1) IOCTL_RDMSR 0x9C402438 and (2) IOCTL_WRMSR 0x9C40243C IOCTLs to \Device\speedfan, as demonstrated by an IOCTL_WRMSR action on MSR_LSTAR.

Vulnerable Product	Search on Vulmon	Subscribe to Product
almico speedfan 4.33

source: wwwsecurityfocuscom/bid/26123/info SpeedFan is prone to a local privilege-escalation vulnerability An attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges Successfully exploiting this issue will result in the complete compromise of affected computers githubcom/offensive-se ...

The Slingshot APT FAQ

Securelist • Alexey Shulmin Sergey Yunakovsky Vasily Berdnikov Andrey Dolgushev • 09 Mar 2018

While analysing an incident which involved a suspected keylogger, we identified a malicious library able to interact with a virtual file system, which is usually the sign of an advanced APT actor. This turned out to be a malicious loader internally named ‘Slingshot’, part of a new, and highly sophisticated attack platform that rivals Project Sauron and Regin in complexity. The initial loader replaces the victim´s legitimate Windows library ‘scesrv.dll’ with a malicious one of exactly th...

CVE-2007-5633

Vulnerability Summary

Vulnerability Trend

Exploits

Recent Articles

References

Vulmon Search

About

Products

Connect