Rising Antivirus Drivers Multiple Local Privilege Escalation Vulnerabilities Network Vulnerability

Summary

This host is installed with Rising Antivirus and is prone to local privilege escalation vulnerability.

Impact

Successful exploitation will allow attackers to corrupt kernel memory and execute arbitrary code on the system with kernel privileges. Impact Level: System/Application

Solution

Run SmartUpdate to Get the Fixed Drivers

Insight

The flaw exists due to error in the 'HookCont.sys', 'HookNtos.sys', 'HOOKREG.sys', 'HookSys.sys' and 'RsNTGdi.sys' drivers while processing specially-crafted IOCTL requests.

Affected

Rising Antivirus 2008/2009/2010 on windows

References

http://secunia.com/advisories/38335
http://www.vupen.com/english/advisories/2010/0218
http://xforce.iss.net/xforce/xfdb/55869

Updated on 2017-03-28

Severity

Classification

CVE CVE-2010-1591

CVSS	Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Multiple Unspecified Vulnerabilities - Mac OS X
Adobe Flash Player 'SWF' File Multiple Code Execution Vulnerability - Mac OS X
Adobe Extension Manager CS5 Insecure Library Loading Vulnerability (Win)
Adobe AIR Multiple Vulnerabilities-01 Jan15 (Windows)
Active Perl Locale::Maketext Module Multiple Code Injection Vulnerabilities (Windows)

Take action and discover your vulnerabilities