Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0324

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2008-0324
Last Modified 07 Mar 2011 10:04:19
Published 16 Jan 2008 10:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-0324

Summary

Cisco Systems VPN Client IPSec Driver (CVPNDRVA.sys) 5.0.02.0090 allows local users to cause a denial of service (crash) by calling the 0x80002038 IOCTL with a small size value, which triggers memory corruption.

Vulnerable Systems

Application

  • Cisco Vpn Client 5.0.2.0090


References

XF - cisco-vpnclient-cvpndrva-dos(39694)

VUPEN - ADV-2008-0170

BID - 27289

MILW0RM - 4911

SECTRACK - 1019240

SECUNIA - 28472


Last Updated: 27 May 2016 10:46:46