← voltar
CVE-2009-0824

CVE-2009-0824

EPSS 0.7%
Elaborate Bytes ElbyCDIO.sys 6.0.2.0 and earlier, as distributed in SlySoft AnyDVD before 6.5.2.6, Virtual CloneDrive 5.4.2.3 and earlier, CloneDVD 2.9.2.0 and earlier, and CloneCD 5.3.1.3 and earlier, uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to cause a denial of service (system crash) via a crafted IOCTL call.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://en.securitylab.ru/lab/PT-2009-11http://osvdb.org/52679http://secunia.com/advisories/34269http://secunia.com/advisories/34287http://secunia.com/advisories/34288http://secunia.com/advisories/34289https://exchange.xforce.ibmcloud.com/vulnerabilities/49232http://www.securityfocus.com/archive/1/501713/100/0/threadedhttp://www.securityfocus.com/bid/34103http://www.slysoft.com/download/changes_anydvd.txthttp://www.slysoft.com/download/changes_clonedvd.txt