456 - ESET Emulation Vulnerability - project-zero

Monorail	Project: project-zero ▼ Issues People Development process History	Sign in

Starred by 5 users

Status:	Fixed
Owner:	taviso@google.com
Closed:	Jun 2015
Cc:	project-...@google.com
Reported-2015-Jun-19 Deadline-90 Finder-taviso Fixed-2015-Jun-22 Vendor-ESET Product-Multiple Severity-Critical CCProjectZeroMembers Restrict-AddIssueComment-Commit

Restricted

Only users with Commit permission may comment.

ESET Emulation Vulnerability

Project Member Reported by taviso@google.com, Jun 20 2015

Back to list

A vulnerability exists managing a shadow stack in ESET Antivirus.

The attached report and exploit was physically given to four ESET engineers at a meeting in Mountain View on Friday 19th June.

This vulnerability allows complete remote root/SYSTEM command execution on all ESET platforms and products.

This video was played to them to help convey the severity.

https://drive.google.com/a/google.com/file/d/0B9IF3YQvo7AfT0xYTGxCT09TVEE/view

Project Member Comment 1 by taviso@google.com, Jun 22 2015

Updated attachments.

esetemu.tar.gz
5.7 KB Download

ESETVulnerabilityReport (1).pdf
423 KB Download

Comment 2 by cevans@google.com, Jun 23 2015

Labels: -Restrict-View-Commit Fixed-2015-Jun-22
Status: Fixed

Project Member Comment 3 by taviso@google.com, Jun 24 2015

Public link for the video: https://www.youtube.com/watch?v=Sk-CuFMXods

Comment 4 Deleted

Project Member Comment 5 by taviso@google.com, Nov 13 2015

Labels: Restrict-AddIssueComment-Commit
Owner: taviso@google.com

► Sign in to add a comment