The x86-64 kernel system-call functionality in Xen 4.1.2 and previous versions, as used in Citrix XenServer 6.0.2 and previous versions and other products; Oracle Solaris 11 and previous versions; illumos before r13724; Joyent SmartOS prior to 20120614T184600Z; FreeBSD prior to 9.0-RELEASE-p3; NetBSD 6.0 Beta and previous versions; Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1; and possibly other operating systems, when running on an Intel processor, incorrectly uses the sysret path in cases where a certain address is not a canonical address, which allows local users to gain privileges via a crafted application. NOTE: because this issue is due to incorrect use of the Intel specification, it should have been split into separate identifiers; however, there was some value in preserving the original mapping of the multi-codebase coordinated-disclosure effort to a single identifier.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freebsd freebsd |
||
illumos illumos |
||
joyent smartos |
||
xen xen 4.0.4 |
||
xen xen 4.1.0 |
||
xen xen 4.0.2 |
||
xen xen 4.0.3 |
||
xen xen 4.1.1 |
||
xen xen |
||
xen xen 4.0.0 |
||
xen xen 4.0.1 |
||
microsoft windows 7 |
||
microsoft windows server 2008 r2 |
||
microsoft windows server 2003 |
||
microsoft windows xp |
||
citrix xenserver 6.0 |
||
citrix xenserver |
||
netbsd netbsd |
||
sun sunos |
Trojan forum sale may mark split in Carberp gang
Cybercrooks are selling the source code for the Carberp banking Trojan toolkit through underground forums - at just $5,000 a pop. The sale of the building blocks for the banking Trojan toolkit is a sign of "conflict within the team", according to Andrey Komarov of Russian security firm Group-IB. "Some of the members would love to destroy the project and move onto another business or new product," Komarov told El Reg. The toolkit for sale consists of the full source code of Carberp, including: co...