CVE-2008-7107

Name of the Vulnerable Software and Affected Versions ESET Smart Security version 3.0.667.0

Description The issue allows local users to cause a denial of service, resulting in a system crash. This is achieved by sending a crafted IOCTL 0x222003 request to the ".easdrv" device interface, specifically targeting the easdrv.sys component.

Recommendations For ESET Smart Security version 3.0.667.0, consider restricting access to the easdrv.sys component to minimize the risk of exploitation. As a temporary workaround, avoid using the IOCTL 0x222003 request to the ".easdrv" device interface until a patch is available.