PT-2008-3279 · Rising · Rising Antivirus 2008

Anibal Sacco

Published

2008-04-29

Updated

2018-10-11

CVE-2008-1738

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Rising Antivirus 2008 versions prior to 20.38.20

Description The issue allows local users to cause a denial of service, resulting in a system crash. This is achieved by providing an invalid pointer to the CLIENT ID structure in a call to the NtOpenProcess function, which is hooked in the System Service Descriptor Table (SSDT).

Recommendations For Rising Antivirus 2008 versions prior to 20.38.20, update to version 20.38.20 or later to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2008-1738

Affected Products

Rising Antivirus 2008

PT-2008-3279 · Rising · Rising Antivirus 2008

CVE-2008-1738

Weakness Enumeration

Related Identifiers

Affected Products

References · 9