CVE-2008-6000

Name of the Vulnerable Software and Affected Versions G DATA AntiVirus versions 2008 G DATA InternetSecurity versions 2008 G DATA TotalCare versions 2008

Description The issue allows local users to cause a denial of service or gain privileges via a crafted IOCTL request. This is achieved by populating kernel registers with IOCTL 0x8317001c input values in the GDTdiIcpt.sys driver. The KeSetEvent function can be executed with modified register contents.

Recommendations For G DATA AntiVirus version 2008, consider disabling the GDTdiIcpt.sys driver until a patch is available. For G DATA InternetSecurity version 2008, restrict access to the IOCTL 0x8317001c request to minimize the risk of exploitation. For G DATA TotalCare version 2008, avoid using the KeSetEvent function with modified register contents until the issue is resolved.