Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5633

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2007-5633
Last Modified 15 Nov 2008 02:01:38
Published 23 Oct 2007 01:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-5633

Summary

Speedfan.sys in Alfredo Milani Comparetti SpeedFan 4.33, when used on Microsoft Windows Vista x64, allows local users to read or write arbitrary MSRs, and gain privileges and load unsigned drivers, via the (1) IOCTL_RDMSR 0x9C402438 and (2) IOCTL_WRMSR 0x9C40243C IOCTLs to \Device\speedfan, as demonstrated by an IOCTL_WRMSR action on MSR_LSTAR.

Vulnerable Systems

Application

  • Almico Speedfan 4.33


References

BID - 26123

MISC - http://www.reversemode.com/index.php?option=com_content&task=view&id=42&Itemid=1

CONFIRM - http://www.bugtrack.almico.com/view.php?id=987

OSVDB - 41842

XF - speedfan-ioctl-privilege-escalation(37298)

SECUNIA - 27312


Last Updated: 27 May 2016 10:46:14