CVE-2005-2986

Name of the Vulnerable Software and Affected Versions AhnLab V3Pro version 2004 Build 6.0.0.383 AhnLab V3 VirusBlock version 2005 Build 6.0.0.383 AhnLab V3Net for Windows Server version 6.0 Build 6.0.0.383

Description The issue arises from the v3flt2k.sys driver, which fails to properly validate the source of the DeviceIoControl commands. This allows remote attackers to gain privileges.

Recommendations For AhnLab V3Pro version 2004 Build 6.0.0.383, consider disabling the v3flt2k.sys driver until a patch is available. For AhnLab V3 VirusBlock version 2005 Build 6.0.0.383, restrict access to the DeviceIoControl commands to minimize the risk of exploitation. For AhnLab V3Net for Windows Server version 6.0 Build 6.0.0.383, avoid using the DeviceIoControl commands in sensitive operations until the issue is resolved.