Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 04:44:01 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1486645034&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2F1003-exploits%2Fsuper-vulns.tgz%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1486645034.1338180241.1338180241.1338180241.1%3B%2B__utmz%3D32867617.1338180241.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/87109/super-vulns.tgz http://packetstormsecurity.org/files/87109/super-vulns.tgz http://packetstormsecurity.org/files/87109/SUPERAntiSpyware-Super-Ad-Blocker-Privilege-Escalation.html Thu, 11 Mar 2010 02:30:19 GMT SUPERAntiSpyware and Super Ad Blocker have almost identical device drivers in order to set up hooks and perform other duties from kernel space. These device drivers suffer from lack of validation of parameters passed from user mode. Additionally, some of the functions accessible from user mode are inherently insecure and lead to easy privilege escalation. All vulnerabilities are applicable to both applications. Proof of concept code included with full advisory.