Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5048

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2008-5048
Last Modified 13 Mar 2009 01:42:54
Published 12 Nov 2008 09:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-5048

Summary

Buffer overflow in Atepmon.sys in ISecSoft Anti-Trojan Elite 4.2.1 and earlier, and possibly 4.2.2, allows local users to cause a denial of service (crash) and possibly execute arbitrary code via long inputs to the 0x00222494 IOCTL.

Vulnerable Systems

Application

  • Isecsoft Anti-trojan Elite 4.1.9

  • Isecsoft Anti-trojan Elite 4.2.0

  • Isecsoft Anti-trojan Elite 4.2.1

  • Isecsoft Anti-trojan Elite 4.2.2


References

XF - antitrojanelite-atepmom-priv-escalation(46464)

BID - 32202

MISC - http://www.ntinternals.org/ntiadv0802/ntiadv0802.html

SECUNIA - 32669


Last Updated: 27 May 2016 10:48:42