CVE-2010-5165

Name of the Vulnerable Software and Affected Versions Malware Defender version 2.6.0

Description A race condition issue allows local users to bypass kernel-mode hook handlers and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection. This is achieved via certain user-space memory changes during hook-handler execution, also referred to as an argument-switch attack or a KHOBE attack. It's worth noting that this issue is disputed by some third parties as it pertains to a flaw in a protection mechanism for situations where a crafted program has already begun to execute.

Recommendations For Malware Defender version 2.6.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.