/*
# Software Link: http://sd.360.cn/sd_download1.html?src=360home]
# Version: [6.1.5.1009]
# Tested on: [Windows xp]
Vendor : Qihoo 360
Affected Software : 360 Security Guard 6.1.5.1009
Description:
Qihoo 360 Security Guard is very famous in China.
Some vulnerabilities have been reported in Qihoo 360 Security Guard, which can be exploited by malicious, local users to gain escalated privileges.
An error in the kernel-mode driver (bregdrv.sys) when handling input passed through the user-mode dynamic link library (bregdll.dll) can be exploited to
read/write/modification registry in kernel mode.
An attacker can exploit this issue to read/write/modification registry with kernel-level privileges. Successful exploits will result in the complete
compromise of affected computers.
Details:
The kernel-mode driver (bregdrv.sys) use CmXxx series functions to read/write/modification registry with kernel-level privileges, bregdll.dll wrappers
...
Read more »
