CVE-2008-1738
Core Security Technologies Advisory 2008.0320
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Rising Antivirus 2008 before 20.38.20 allows local users to cause a denial of service (system crash) via an invalid pointer to the _CLIENT_ID structure in a call to the NtOpenProcess hooked System Service Descriptor Table (SSDT) function.
Rising Antivirus 2008 anterior a 20.38.20 permite a usuarios locales provocar una denegación de servicio (caída del sistema) mediante un puntero no válido a la estructura _CLIENT_ID en una llamada a NtOpenProcess asociada a la función System Service Descriptor Table (SSDT).
Insufficient argument validation of hooked SSDT functions exists in BitDefender Antivirus 2008 Build 11.0.11, Comodo Firewall Pro 2.4.18.184, Sophos Antivirus 7.0.5, and Rising Antivirus 19.60.0.0 and 19.66.0.0. Older versions may be affected, but were not checked.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2008-04-11 CVE Reserved
- 2008-04-28 CVE Published
- 2024-08-07 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://securityreason.com/securityalert/3838 | Third Party Advisory | |
| http://securitytracker.com/id?1019946 | Vdb Entry | |
| http://www.coresecurity.com/?action=item&id=2249 | X_refsource_misc | |
| http://www.securityfocus.com/archive/1/491405/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/28744 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2008/1382 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/42084 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/30007 | 2018-10-11 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Rising-global Search vendor "Rising-global" | Rising Antivirus Search vendor "Rising-global" for product "Rising Antivirus" | <= 20.38.20 Search vendor "Rising-global" for product "Rising Antivirus" and version " <= 20.38.20" | 2008 |
Affected
| ||||||