CVE-2007-0333

Agnitum Outpost Firewall PRO 4.0 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0333. PoCs published by Matousec Transparent security.

AI-analyzed exploit summary The provided text describes a local privilege escalation vulnerability in Outpost Firewall PRO 4.0 due to inadequate SSDT hooking. An attacker can exploit this to elevate privileges and compromise the system.

Description

Agnitum Outpost Firewall PRO 4.0 allows local users to bypass access restrictions and insert Trojan horse drivers into the product's installation directory by creating links using FileLinkInformation requests with the ZwSetInformationFile function, as demonstrated by modifying SandBox.sys.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Matousec Transparent security · textlocalwindows

https://www.exploit-db.com/exploits/29465

View Code ZIP pw:eip

The provided text describes a local privilege escalation vulnerability in Outpost Firewall PRO 4.0 due to inadequate SSDT hooking. An attacker can exploit this to elevate privileges and compromise the system.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Theoretical

Target: Outpost Firewall PRO 4.0

Auth required

Prerequisites: Local access to the system · Outpost Firewall PRO 4.0 installed

MITRE ATT&CK