Vulnerability Description
Beijing Rising International Rising Antivirus 2008 through 2010 does not properly validate input to certain IOCTLs, including 0x83003C07, which allows local users to gain privileges via crafted IOCTL requests to the (1) HookCont.sys, (2) HookNtos.sys, (3) HOOKREG.sys, or (4) HookSys.sys device driver; or the (5) RsNTGdi.sys kernel module, reachable through \Device\RSNTGDI.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rising-Global | Rising Antivirus | 2008 |
Related Weaknesses (CWE)
References
- http://osvdb.org/61946
- http://secunia.com/advisories/38335Vendor Advisory
- http://www.ntinternals.org/ntiadv0805/ntiadv0805.htmlExploit
- http://www.ntinternals.org/ntiadv0902/ntiadv0902.htmlExploit
- http://www.securityfocus.com/bid/37951Exploit
- http://www.vupen.com/english/advisories/2010/0218Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/55869
- http://osvdb.org/61946
- http://secunia.com/advisories/38335Vendor Advisory
- http://www.ntinternals.org/ntiadv0805/ntiadv0805.htmlExploit
- http://www.ntinternals.org/ntiadv0902/ntiadv0902.htmlExploit
- http://www.securityfocus.com/bid/37951Exploit
- http://www.vupen.com/english/advisories/2010/0218Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/55869
FAQ
What is CVE-2010-1591?
CVE-2010-1591 is a vulnerability with a CVSS score of 7.2 (HIGH). Beijing Rising International Rising Antivirus 2008 through 2010 does not properly validate input to certain IOCTLs, including 0x83003C07, which allows local users to gain privileges via crafted IOCTL ...
How severe is CVE-2010-1591?
CVE-2010-1591 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-1591?
Check the references section above for vendor advisories and patch information. Affected products include: Rising-Global Rising Antivirus.