Giuseppe 'Evilcry' Bonfa'

5 exploits Active since Dec 2008
EIP-2026-116856 EXPLOITDB text WORKING POC
Avast! AntiVirus 4.8.1351.0 - Denial of Service / Privilege Escalation
CVE-2009-4049 EXPLOITDB c WORKING POC
avast! Home and Professional 4.8.1356.0 - Memory Corruption
Heap-based buffer overflow in aswRdr.sys (aka the TDI RDR driver) in avast! Home and Professional 4.8.1356.0 allows local users to cause a denial of service (memory corruption) or possibly gain privileges via crafted arguments to IOCTL 0x80002024.
CVE-2009-2918 EXPLOITDB text WORKING POC
TheGreenBow IPSec VPN Client 4.61.003 - Denial of Service via tgbvpn.sys IOCTL 0x80000034
The tgbvpn.sys driver in TheGreenBow IPSec VPN Client 4.61.003 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a crafted request to the 0x80000034 IOCTL, probably involving an input or output buffer size of 0.
CVE-2008-5731 EXPLOITDB php WORKING POC
PGP Desktop 9.0.6 and 9.9.0 - Denial of Service via IOCTL Request
The PGPwded device driver (aka PGPwded.sys) in PGP Corporation PGP Desktop 9.0.6 build 6060 and 9.9.0 build 397 allows local users to cause a denial of service (system crash) and possibly gain privileges via a certain METHOD_BUFFERED IOCTL request that overwrites portions of memory, related to a "Driver Collapse." NOTE: some of these details are obtained from third party information.
CVE-2009-3522 EXPLOITDB c WORKING POC
avast! Home and Professional < 4.8.1356 - Local Privilege Escalation via IOCTL 0xb2c80018
Stack-based buffer overflow in aswMon2.sys in avast! Home and Professional for Windows 4.8.1351, and possibly other versions before 4.8.1356, allows local users to cause a denial of service (system crash) and possibly gain privileges via a crafted IOCTL request to IOCTL 0xb2c80018.