Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments to (1) IOCTL functions in the Firewall module or (2) SSDT hook handler functions in the Registry module.
References
Configurations
History
21 Nov 2024, 00:41
Type | Values Removed | Values Added |
---|---|---|
References | () http://force.coresecurity.com/index.php?module=articles&func=display&aid=32 - | |
References | () http://securityreason.com/securityalert/3555 - | |
References | () http://www.coresecurity.com/?action=item&id=2025 - | |
References | () http://www.securityfocus.com/archive/1/486513/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/27341 - | |
References | () http://www.securitytracker.com/id?1019245 - | |
References | () http://www.vupen.com/english/advisories/2008/0242 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/39758 - |
Information
Published : 2008-01-18 23:00
Updated : 2024-11-21 00:41
NVD link : CVE-2008-0365
Mitre link : CVE-2008-0365
CVE.ORG link : CVE-2008-0365
JSON object : View
Products Affected
core_security_technologies
- core_force
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer