PT-2008-3457 · Realtek · Realtek Hd Audio Codec Drivers

Published

2008-04-24

Updated

2018-10-11

CVE-2008-1931

CVSS v2.0

6.8

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Realtek HD Audio Codec Drivers versions prior to 6.0.1.5605

Description The issue allows local users to create, write, and read registry keys via a crafted IOCTL request. This is possible due to a flaw in the RTKVHDA.sys and RTKVHDA64.sys drivers.

Recommendations For versions prior to 6.0.1.5605, update the Realtek HD Audio Codec Drivers to version 6.0.1.5605 or later to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2008-1931

Affected Products

Realtek Hd Audio Codec Drivers

PT-2008-3457 · Realtek · Realtek Hd Audio Codec Drivers

CVE-2008-1931

Weakness Enumeration

Related Identifiers

Affected Products

References · 9