CVE-2008-0365

Name of the Vulnerable Software and Affected Versions CORE FORCE versions prior to 0.95.172

Description The issue is related to multiple buffer overflows that can be triggered by local users through crafted arguments to certain functions. This can lead to a denial of service, causing the system to crash, and potentially allow the execution of arbitrary code in the kernel context. The buffer overflows can occur in (1) IOCTL functions within the Firewall module or (2) SSDT hook handler functions in the Registry module.

Recommendations For versions prior to 0.95.172, update to version 0.95.172 or later to resolve the issue. As a temporary workaround, consider restricting access to the Firewall and Registry modules to minimize the risk of exploitation. Avoid using crafted arguments to IOCTL functions in the Firewall module or SSDT hook handler functions in the Registry module until the issue is resolved.