|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Full-Disclosure] FreezeX file access vulnerability
From: Xenzeo (xenzeo
blackhat.dk)
Date: Mon Dec 20 2004 - 14:02:08 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Affected Products:
Faronics FreezeX v. 1.00.100.0666
(http://www.faronics.com/html/Freezex.asp)
Author:
Xenzeo
FreezeX is a program that promise, it can prevent executable files from
beeing run on windows OS.
FreezeX has a database of every file from when it was installed (db.fzx)
this file i located in C:\Program Files\Faronics\FreezeX\db.fzx, this
file seems inaccessable, when trying accessing this directory, windows
reports Access Denied from "dos" and windows.
Though one with administrative access can simply overwrite this file
with misc data, resulting in killing FreezeX
Proof Of Concept:
C:\> echo "diediedie" > C:\Program Files\Faronices\Freezex\db.fzx
Reboot windows, and FreezeX can no longer determine what
files have permission to be run, and needs to be reinstalled
to work again.
Vender status:
Faronics know of this and promises it will be fixed shortly.
-Xenzeo
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]