Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: InfoSec Handlers Diary Blog - WinPcap local privilege escalation InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

WinPcap local privilege escalation

Published: 2007-07-10
Last Updated: 2007-07-10 21:15:55 UTC
by Swa Frantzen (Version: 1)
0 comment(s)

An exploit has been made public for a privilege escalation in WinPcap, a DLL used by many security tools.

Even if we agree most systems security professionals would use this on, will typically not have many untrusted users and as such will escape he worst of this. Still, a local escalation and a remote user level exploit combined might be bad enough to get such security systems exploited.

Better be safe than sorry.

WinPcap version 4.0.1 should fix this.

--
Swa Frantzen -- NET2S

Keywords:
0 comment(s)
Diary Archives