Vulnerabilities > CVE-2010-2308 - Unspecified vulnerability in Sophos Anti-Virus

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
sophos
nessus
NVD
Published: 2010-06-16
Updated: 2018-10-10

Summary

Unspecified vulnerability in the filter driver (savonaccessfilter.sys) in Sophos Anti-Virus before 7.6.20 allows local users to gain privileges via crafted arguments to the NtQueryAttributesFile function.

Vulnerable Configurations

Part Description Count
Application
Sophos
43

Nessus

NASL familyWindows
NASL idSOPHOS_7_6_20.NASL
descriptionAccording to its version number, the Sophos Anti-Virus installation on the remote Windows host is affected by a local privilege escalation vulnerability. A local attacker, exploiting this flaw, could execute arbitrary code in kernel mode and thereby gain complete control of the affected system.
last seen2020-06-01
modified2020-06-02
plugin id46860
published2010-06-10
reporterThis script is Copyright (C) 2010-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/46860
titleSophos Anti-Virus SAVOnAccessFilter Local Privilege Escalation

References