Vulnerability Name:
CVE-2010-2308 (CCN-59288)
Assigned:
2010-06-09
Published:
2010-06-09
Updated:
2018-10-10
Summary:
Unspecified vulnerability in the filter driver (savonaccessfilter.sys) in Sophos Anti-Virus before 7.6.20 allows local users to gain privileges via crafted arguments to the NtQueryAttributesFile function.
CVSS v3 Severity:
9.3 Critical
(CCN CVSS v3.1 Vector:
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
)
Exploitability Metrics:
Attack Vector (AV):
Local
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope:
Scope (S):
Changed
Impact Metrics:
Confidentiality (C):
High
Integrity (I):
High
Availibility (A):
High
CVSS v2 Severity:
7.2 High
(CVSS v2 Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C
)
5.3 Medium
(Temporal CVSS v2 Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Authentication (Au):
None
Impact Metrics:
Confidentiality (C):
Complete
Integrity (I):
Complete
Availibility (A):
Complete
7.2 High
(CCN CVSS v2 Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C
)
5.3 Medium
(CCN Temporal CVSS v2 Vector:
AV:L/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C
)
Exploitability Metrics:
Access Vector (AV):
Local
Access Complexity (AC):
Low
Athentication (Au):
None
Impact Metrics:
Confidentiality (C):
Complete
Integrity (I):
Complete
Availibility (A):
Complete
Vulnerability Type:
CWE-noinfo
Vulnerability Consequences:
Gain Privileges
References:
Source: MITRE
Type: CNA
CVE-2010-2308
Source: CCN
Type: TPTI-10-03
Sophos Anti-Virus SAVOnAccessFilter Local Privilege Escalation Vulnerabilit
Source: MISC
Type: UNKNOWN
http://dvlabs.tippingpoint.com/advisory/TPTI-10-03
Source: CCN
Type: SA40085
Sophos Anti-Virus NtQueryAttributesFile() Privilege Escalation Vulnerability
Source: SECUNIA
Type: Vendor Advisory
40085
Source: CCN
Type: SECTRACK ID: 1024089
Sophos Anti-Virus 'savonaccessfilter.sys' Error Lets Local Users Gain Elevated Privileges
Source: CCN
Type: OSVDB ID: 65377
Sophos Anti-Virus savonaccessfilter.sys NtQueryAttributesFile() Call Memory Corruption Local Privilege Escalation
Source: BUGTRAQ
Type: UNKNOWN
20100609 TPTI-10-03: Sophos Anti-Virus SAVOnAccessFilter Local Privilege Escalation Vulnerability
Source: CCN
Type: BID-40715
Sophos Anti-Virus 'NtQueryAttributesFile()' System Call Local Privilege Escalation Vulnerability
Source: SECTRACK
Type: UNKNOWN
1024089
Source: CCN
Type: Sophos Knowledgebase Issue 111126
Issue: Sophos Anti-Virus vulnerability discovered and fixed
Source: CONFIRM
Type: Vendor Advisory
http://www.sophos.com/support/knowledgebase/article/111126.html
Source: VUPEN
Type: Vendor Advisory
ADV-2010-1412
Source: XF
Type: UNKNOWN
sophos-savonaccessfilter-priv-esc(59288)
Vulnerable Configuration:
Configuration 1
:
cpe:/a:sophos:anti-virus:3.4.6:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.78:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.78d:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.79:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.80:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.81:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.82:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.83:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.84:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.85:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.86:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.90:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.91:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.95:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:3.96.0:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:4.03:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:4.04:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:4.05:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:4.5.3:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:4.5.4:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:4.5.11:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:4.5.12:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:4.7.1:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:4.7.2:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:4.33.0:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:5.0.1:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:5.0.2:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:5.0.4:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:5.0.9:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:5.1:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:5.2:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:5.2.1:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:6.0.4:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:6.5:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:7.0:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:7.0.5:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:7.6:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:7.6.14:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:7.6.15:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:7.6.16:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:7.6.17:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:7.6.18:*:*:*:*:*:*:*
OR
cpe:/a:sophos:anti-virus:*:*:*:*:*:*:*:*
(Version <= 7.6.19)
Denotes that component is vulnerable
BACK
sophos
anti-virus 3.4.6
sophos
anti-virus 3.78
sophos
anti-virus 3.78d
sophos
anti-virus 3.79
sophos
anti-virus 3.80
sophos
anti-virus 3.81
sophos
anti-virus 3.82
sophos
anti-virus 3.83
sophos
anti-virus 3.84
sophos
anti-virus 3.85
sophos
anti-virus 3.86
sophos
anti-virus 3.90
sophos
anti-virus 3.91
sophos
anti-virus 3.95
sophos
anti-virus 3.96.0
sophos
anti-virus 4.03
sophos
anti-virus 4.04
sophos
anti-virus 4.05
sophos
anti-virus 4.5.3
sophos
anti-virus 4.5.4
sophos
anti-virus 4.5.11
sophos
anti-virus 4.5.12
sophos
anti-virus 4.7.1
sophos
anti-virus 4.7.2
sophos
anti-virus 4.33.0
sophos
anti-virus 5.0.1
sophos
anti-virus 5.0.2
sophos
anti-virus 5.0.4
sophos
anti-virus 5.0.9
sophos
anti-virus 5.1
sophos
anti-virus 5.2
sophos
anti-virus 5.2.1
sophos
anti-virus 6.0.4
sophos
anti-virus 6.5
sophos
anti-virus 7.0
sophos
anti-virus 7.0.5
sophos
anti-virus 7.6
sophos
anti-virus 7.6.14
sophos
anti-virus 7.6.15
sophos
anti-virus 7.6.16
sophos
anti-virus 7.6.17
sophos
anti-virus 7.6.18
sophos
anti-virus *
Denotes that component is vulnerable