Local Privilege Escalation Vulnerability in Realtek HD Audio Codec Drivers
CVE-2008-1931

Currently unrated

Key Information:

Vendor: Realtek
Status: Hd Audio Codec Drivers
Vendor: CVE Published:; 25 April 2008

What is CVE-2008-1931?

The Realtek HD Audio Codec Drivers prior to version 6.0.1.5605 for Windows Vista have a vulnerability that allows local users to manipulate registry keys. This is achieved through a specially crafted IOCTL request, which grants the ability to create, write, and read from critical system registry locations, potentially leading to unauthorized access to system resources.

References

http://secunia.com/advisories/29953

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/archive/1/491249/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.vupen.com/english/advisories/2008/1350/references

vdb-entryx_refsource_VUPEN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 25, 2008
Vulnerability Reserved
Apr 24, 2008