seppi has reported a weakness in DeviceLock, which potentially can be exploited by malicious, local users to bypass certain security restrictions.
The weakness is caused due to improper restrictions when no permissions have been specified for a harddrive. This can be exploited to bypass any restrictions applied by the NTFS file system, and gain read and write access to the raw file system.
The weakness has been reported in version 5.73 (prior to Build 305). Prior versions may also be affected.
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to firstname.lastname@example.org