Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1735

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2008-1735
Last Modified 07 Mar 2011 10:07:33
Published 29 Apr 2008 08:10:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-1735

Summary

BitDefender Antivirus 2008 20080118 and earlier allows local users to cause a denial of service (system crash) via an invalid pointer to the CLIENT_ID structure in a call to the NtOpenProcess hooked System Service Descriptor Table (SSDT) function.

Vulnerable Systems

Application

  • Bitdefender Antivirus 2008


References

MISC - http://kb.bitdefender.com/KB419-en--Security-vulnerability-in-BitDefender-2008.html

XF - bitdefender-ssdt-dos(42081)

VUPEN - ADV-2008-1384

BID - 28741

BUGTRAQ - 20080428 CORE-2008-0320 - Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls

MISC - http://www.coresecurity.com/?action=item&id=2249

SECTRACK - 1019943

SREASON - 3838

SECUNIA - 30005


Last Updated: 27 May 2016 10:47:38