Lucene search

K

MitreCVELIST:CVE-2009-0824

HistoryMar 14, 2009 - 6:00 p.m.

CVE-2009-0824

2009-03-1418:00:00

mitre

www.cve.org

1

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.1%

Elaborate Bytes ElbyCDIO.sys 6.0.2.0 and earlier, as distributed in SlySoft AnyDVD before 6.5.2.6, Virtual CloneDrive 5.4.2.3 and earlier, CloneDVD 2.9.2.0 and earlier, and CloneCD 5.3.1.3 and earlier, uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to cause a denial of service (system crash) via a crafted IOCTL call.

References

en.securitylab.ru/lab/PT-2009-11

osvdb.org/52679

secunia.com/advisories/34269

secunia.com/advisories/34287

secunia.com/advisories/34288

secunia.com/advisories/34289

www.securityfocus.com/archive/1/501713/100/0/threaded

www.securityfocus.com/bid/34103

www.slysoft.com/download/changes_anydvd.txt

www.slysoft.com/download/changes_clonedvd.txt

exchange.xforce.ibmcloud.com/vulnerabilities/49232

6.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.1%

Related for CVELIST:CVE-2009-0824

openvas2 nvd1 seebug1 cve1 securityvulns1 kaspersky1 prion1 ptsecurity1 securelist1 mssecure2 mmpc1 myhack581 rapid7blog1