---------------------------------------------------------------------- BETA test the new Secunia Personal Software Inspector! The Secunia PSI detects installed software on your computer and categorises it as either Insecure, End-of-Life, or Up-To-Date. Effectively enabling you to focus your attention on software installations where more secure versions are available from the vendors. Download the free PSI BETA from the Secunia website: https://psi.secunia.com/ ---------------------------------------------------------------------- TITLE: AMD Catalyst Software Suite DSM Dynamic Driver Vista Kernel Protection Bypass SECUNIA ADVISORY ID: SA26448 VERIFY ADVISORY: http://secunia.com/advisories/26448/ CRITICAL: Not critical IMPACT: Security Bypass WHERE: Local system OPERATING SYSTEM: Microsoft Windows Vista http://secunia.com/product/13223/ SOFTWARE: AMD Catalyst Software Suite 7.x http://secunia.com/product/15311/ DESCRIPTION: A weakness has been reported in AMD Catalyst Software Suite, which can be exploited by malicious, local users to bypass certain security restrictions. The weakness is caused due to an input validation error within the digitally signed ATI DSM Dynamic Driver (atdcm64a.sys). This can be exploited to e.g. load arbitrary unsigned drivers on Windows Vista. The weakness is reported in atdcm64a.sys version 3.0.502.0 included in the AMD Catalyst Software Suite. Other versions may also be affected. SOLUTION: Update to AMD Catalyst Software Suite version 7.8. http://ati.amd.com/support/drivers/vista32/common-vista32.html PROVIDED AND/OR DISCOVERED BY: Joanna Rutkowska and Alexander Tereshkin, Invisible Things Lab ORIGINAL ADVISORY: Invisible Things Lab: http://bluepillproject.org/stuff/IsGameOver.ppt ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------