CVE-2008-0366

Name of the Vulnerable Software and Affected Versions CORE FORCE versions prior to 0.95.172

Description The issue is related to the improper validation of arguments to SSDT hook handler functions in the Registry module. This can be exploited by local users to cause a denial of service, resulting in a system crash, and potentially execute arbitrary code in the kernel context by providing crafted arguments.

Recommendations For versions prior to 0.95.172, update to version 0.95.172 or later to resolve the issue. As a temporary workaround, consider restricting access to the SSDT hook handler functions in the Registry module to minimize the risk of exploitation.