Privilege Escalation Vulnerability in ESET Smart Security by ESET
CVE-2008-5724

Currently unrated

Key Information:

Vendor

Eset

Status
Smart Security
Vendor
CVE Published:
26 December 2008

What is CVE-2008-5724?

The Personal Firewall driver (epfw.sys) in ESET Smart Security version 3.0.672 and earlier is susceptible to a privilege escalation vulnerability. Local users can exploit this weakness through a specially crafted I/O Control (IOCTL) request which leads to memory overwrite. The improperly handled IRP requests allow for the escalation of privileges, potentially enabling unauthorized access to system resources.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.eset.com/joomla/index.php?option=com_content&t...
x_refsource_CONFIRM
http://secunia.com/advisories/33210
third-party-advisoryx_refsource_SECUNIA
http://www.ntinternals.org/ntiadv0807/ntiadv0807.html
x_refsource_MISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.