PT-2007-2621 · Norman · Norman Sandbox Analyzer

Published

2007-03-02

Updated

2018-10-16

CVE-2007-1194

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Norman SandBox Analyzer (affected versions not specified)

Description The issue allows local users to determine if they are running in an emulator or a non-physical Intel processor environment, which can aid attackers in creating malware that is harder to analyze. This is due to the improper handling of Interrupt Descriptor Table (IDT) entries.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2007-1194

Affected Products

Norman Sandbox Analyzer

PT-2007-2621 · Norman · Norman Sandbox Analyzer

CVE-2007-1194

Weakness Enumeration

Related Identifiers

Affected Products

References · 6