Prevx Home Intrusion Prevention Vulnerability
- 0
- Add a Comment
- No Related Post
Critical: Less critical Impact: Security Bypass Where: Local system Solution Status: Vendor Patch Software: Prevx Home 1.x
Tan Chew Keong has reported a vulnerability in Prevx Home, which can be exploited certain malicious processes to bypass security features provided by the product.
Prevx Home includes registry and buffer overflow protection features, which protect against manipulation of critical registry keys and exploitation of buffer overflow vulnerabilities. However, it is possible for a malicious program to bypass these feature by restoring the running kernel’s SDT (Service Descriptor Table) ServiceTable by writing directly to the “\Device\PhysicalMemory” section object.
The vulnerability has been reported in version 1.0.
Solution: Upgrade to version 2.0.
http://www1.prevx.com/prevxhome.asp