Vulnerability Name:

CVE-2006-7160 (CCN-30312)

Assigned:2006-11-15
Published:2006-11-15
Updated:2018-10-16
Summary:The Sandbox.sys driver in Outpost Firewall PRO 4.0, and possibly earlier versions, does not validate arguments to hooked SSDT functions, which allows local users to cause a denial of service (crash) via invalid arguments to the (1) NtAssignProcessToJobObject,, (2) NtCreateKey, (3) NtCreateThread, (4) NtDeleteFile, (5) NtLoadDriver, (6) NtOpenProcess, (7) NtProtectVirtualMemory, (8) NtReplaceKey, (9) NtTerminateProcess, (10) NtTerminateThread, (11) NtUnloadDriver, and (12) NtWriteVirtualMemory functions.
CVSS v3 Severity:6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)
3.9 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)
3.9 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-20
Vulnerability Consequences:Denial of Service
References:Source: CCN
Type: Full-Disclosure Mailing List, Wed Nov 15 2006 - 13:24:23 CST
Outpost Multiple insufficient argument validation of hooked SSDT function Vulnerability

Source: MITRE
Type: CNA
CVE-2006-7160

Source: CCN
Type: SA22913
Outpost Firewall Pro Hooked Functions Denial of Service

Source: SECUNIA
Type: Vendor Advisory
22913

Source: SREASON
Type: UNKNOWN
2376

Source: CCN
Type: Outpost Firewall Pro Web page
Outpost Firewall PRO - Personal Firewall

Source: MISC
Type: Vendor Advisory
http://www.matousec.com/info/advisories/Outpost-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php

Source: CCN
Type: OSVDB ID: 30457
Outpost Firewall Pro Multiple SSDT Function Invalid Argument DoS

Source: CCN
Type: OSVDB ID: 45899
Outpost Firewall Pro SSDT Hooks Local Privilege Escalation

Source: BUGTRAQ
Type: UNKNOWN
20061115 Outpost Multiple insufficient argument validation of hooked SSDT function Vulnerability

Source: BID
Type: UNKNOWN
21097

Source: CCN
Type: BID-21097
Outpost Firewall PRO Multiple Local Denial of Service Vulnerabilities

Source: VUPEN
Type: Vendor Advisory
ADV-2006-4537

Source: XF
Type: UNKNOWN
outpostfirewall-multiple-functions-dos(30312)

Source: XF
Type: UNKNOWN
outpostfirewall-multiple-functions-dos(30312)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:agnitum:outpost_firewall:*:*:pro:*:*:*:*:* (Version <= 4.0)

    • * Denotes that component is vulnerable
    BACK
    agnitum outpost firewall *