Vulnerabilities

CVE-2003-1233

by Fred · 28/10/2005

Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymbolicLinkObject function to create a symbolic link to (1) DevicePhysicalMemory or (2) to a drive letter using the subst command.

Date published : 2005-10-28

http://www.securityfocus.com/bid/6511

http://archives.neohapsis.com/archives/bugtraq/2003-01/0018.html

Related

Tags: Cybersecurity Alert