Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5049

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2008-5049
Last Modified 13 Mar 2009 01:42:54
Published 12 Nov 2008 09:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-5049

Summary

Buffer overflow in AKEProtect.sys 3.3.3.0 in ISecSoft Anti-Keylogger Elite 3.3.0 and earlier, and possibly other versions including 3.3.3, allows local users to gain privileges via long inputs to the (1) 0x002224A4, (2) 0x002224C0, and (3) 0x002224CC IOCTL.

Vulnerable Systems

Application

  • Isecsoft Anti-keylogger Elite 3.3.0


References

XF - antikeylogger-akeprotect-priv-escalation(46465)

BID - 32202

MISC - http://www.ntinternals.org/ntiadv0802/ntiadv0802.html

MILW0RM - 7054

SREASON - 4582

SECUNIA - 32634


Last Updated: 27 May 2016 10:48:42