CVE-2008-5725

Name of the Vulnerable Software and Affected Versions EnTech Taiwan PowerStrip versions 3.84 and earlier NT kernel-mode driver (aka pstrip.sys) version 5.0.1.1 and earlier

Description The issue allows local users to gain privileges by exploiting certain IRP parameters in an IOCTL request to the API endpoint "DevicePowerstrip1", which can overwrite portions of memory.

Recommendations For EnTech Taiwan PowerStrip versions 3.84 and earlier, update to a version later than 3.84 to resolve the issue. For NT kernel-mode driver (aka pstrip.sys) version 5.0.1.1 and earlier, update to a version later than 5.0.1.1 to resolve the issue. As a temporary workaround, consider restricting access to the "DevicePowerstrip1" API endpoint to minimize the risk of exploitation.