Published: 30/09/2008 Updated: 29/09/2017

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 730

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

DLMFENC.sys 1.0.0.28 in DESlock+ 3.2.7 allows local users to cause a denial of service (system crash) or potentially execute arbitrary code via a certain DLMFENC_IOCTL request to \\.\DLKPFSD_Device that overwrites a pointer, probably related to use of the ProbeForRead function when ProbeForWrite was intended.

Vulnerable Product	Search on Vulmon	Subscribe to Product
deslock deslock 3.2.7

/* deslock-probe-racec * * Copyright (c) 2008 by <mu-b@digit-labsorg> * * DESlock+ <= 327 local kernel race condition DoS POC * by mu-b - Fri 22 Feb 2008 * * - Tested on: DLMFENCsys 10028 * * race conditions between calls to ProbeForRead/ProbeForWrite * and pointer use * * "Note that subsequent accesses by the driver t ...

/* deslock-probe-readc * * Copyright (c) 2008 by <mu-b@digit-labsorg> * * DESlock+ <= 327 local kernel DoS POC * by mu-b - Sat 19 Jul 2008 * * - Tested on: DLMFENCsys 10028 * * call to ProbeForRead with a user-definable address that * is eventually overwritten (should have been ProbeForWrite) * * wwwcctmarkgov ...

CWE-20 http://secunia.com/advisories/31921 http://digit-labs.org/files/exploits/deslock-probe-read.c http://securityreason.com/securityalert/4342 http://www.vupen.com/english/advisories/2008/2638 https://www.exploit-db.com/exploits/6498 https://nvd.nist.gov https://www.exploit-db.com/exploits/6497/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-4363

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect