CVE-2010-5182

Name of the Vulnerable Software and Affected Versions VirusBuster Internet Security Suite version 3.2

Description A race condition issue allows local users to bypass kernel-mode hook handlers and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection. This is achieved via certain user-space memory changes during hook-handler execution, also referred to as an argument-switch attack or a KHOBE attack.

Recommendations For VirusBuster Internet Security Suite version 3.2, consider disabling the kernel-mode hook handlers as a temporary workaround until a patch is available. Restrict access to user-space memory to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.