Vulnerability Description
Buffer overflow in Atepmon.sys in ISecSoft Anti-Trojan Elite 4.2.1 and earlier, and possibly 4.2.2, allows local users to cause a denial of service (crash) and possibly execute arbitrary code via long inputs to the 0x00222494 IOCTL.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Isecsoft | Anti-Trojan Elite | <= 4.2.2 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/32669Vendor Advisory
- http://www.ntinternals.org/ntiadv0802/ntiadv0802.html
- http://www.securityfocus.com/bid/32202
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46464
- http://secunia.com/advisories/32669Vendor Advisory
- http://www.ntinternals.org/ntiadv0802/ntiadv0802.html
- http://www.securityfocus.com/bid/32202
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46464
FAQ
What is CVE-2008-5048?
CVE-2008-5048 is a vulnerability with a CVSS score of 7.2 (HIGH). Buffer overflow in Atepmon.sys in ISecSoft Anti-Trojan Elite 4.2.1 and earlier, and possibly 4.2.2, allows local users to cause a denial of service (crash) and possibly execute arbitrary code via long...
How severe is CVE-2008-5048?
CVE-2008-5048 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-5048?
Check the references section above for vendor advisories and patch information. Affected products include: Isecsoft Anti-Trojan Elite.