CVE-2007-4969

Name of the Vulnerable Software and Affected Versions Process Monitor version 1.22

Description The issue concerns the improper validation of certain parameters to System Service Descriptor Table (SSDT) function handlers. This can be exploited by local users to cause a denial of service (crash) and possibly gain privileges. The vulnerability is related to unspecified kernel SSDT hooks for various Windows Native API functions, including NtCreateKey, NtDeleteValueKey, NtLoadKey, NtOpenKey, NtQueryValueKey, NtSetValueKey, and NtUnloadKey.

Recommendations For Process Monitor version 1.22, at the moment, there is no information about a newer version that contains a fix for this vulnerability.