Unrated severityNVD Advisory· Published Mar 7, 2007· Updated Jun 16, 2026
CVE-2006-7160
CVE-2006-7160
Description
The Sandbox.sys driver in Outpost Firewall PRO 4.0, and possibly earlier versions, does not validate arguments to hooked SSDT functions, which allows local users to cause a denial of service (crash) via invalid arguments to the (1) NtAssignProcessToJobObject,, (2) NtCreateKey, (3) NtCreateThread, (4) NtDeleteFile, (5) NtLoadDriver, (6) NtOpenProcess, (7) NtProtectVirtualMemory, (8) NtReplaceKey, (9) NtTerminateProcess, (10) NtTerminateThread, (11) NtUnloadDriver, and (12) NtWriteVirtualMemory functions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=4.0
Patches
Vulnerability mechanics
References
7- secunia.com/advisories/22913nvdVendor Advisory
- www.matousec.com/info/advisories/Outpost-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.phpnvdVendor Advisory
- www.vupen.com/english/advisories/2006/4537nvdVendor Advisory
- securityreason.com/securityalert/2376nvd
- www.securityfocus.com/archive/1/451672/100/0/threadednvd
- www.securityfocus.com/bid/21097nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/30312nvd
News mentions
0No linked articles in our index yet.