CVE-2008-7211

Name of the Vulnerable Software and Affected Versions CreativeLabs es1371mp.sys version 5.1.3612.0

Description The issue allows local users to gain SYSTEM privileges via a crafted IRP request that dereferences a NULL FsContext pointer, due to the lack of a Functional Device Object (FDO) to prevent user-mode access to the Physical Device Object (PDO). This occurs when the CreativeLabs es1371mp.sys 5.1.3612.0 WDM audio driver is used in Ensoniq PCI 1371 sound cards and runs on Windows Vista.

Recommendations For CreativeLabs es1371mp.sys version 5.1.3612.0, consider restricting access to the Physical Device Object (PDO) to minimize the risk of exploitation, until a patch is available.