exploitDog

CVE-2008-6000

Опубликовано: 28 янв. 2009

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service (system crash) or gain privileges via a crafted IOCTL request, as demonstrated by execution of the KeSetEvent function with modified register contents.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gdata:antivirus_2008:*:*:*:*:*:*:*:*

cpe:2.3:a:gdata:internetsecurity_2008:*:*:*:*:*:*:*:*

cpe:2.3:a:gdata:totalcare_2008:*:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00057

Низкий

7.2 High

CVSS2

Дефекты

CWE-399

Связанные уязвимости

GHSA-vwp5-884f-89g9

github

больше 3 лет назад

The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service (system crash) or gain privileges via a crafted IOCTL request, as demonstrated by execution of the KeSetEvent function with modified register contents.

EPSS

Процентиль: 18%

0.00057

Низкий

7.2 High

CVSS2

Дефекты

CWE-399