Elaborate Bytes ElbyCDIO.sys 6.0.2.0 and earlier, as distributed in SlySoft AnyDVD before 6.5.2.6, Virtual CloneDrive 5.4.2.3 and earlier, CloneDVD 2.9.2.0 and earlier, and CloneCD 5.3.1.3 and earlier, uses the METHOD_NEITHER communication method for IOCTLs and does not properly validate a buffer associated with the Irp object, which allows local users to cause a denial of service (system crash) via a crafted IOCTL call.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2009-03-14T18:00:00
Updated: 2024-08-07T04:48:52.378Z
Reserved: 2009-03-05T00:00:00
Link: CVE-2009-0824
Vulnrichment
No data.
NVD
Status : Modified
Published: 2009-03-14T18:30:00.547
Modified: 2024-11-21T01:00:59.500
Link: CVE-2009-0824
Redhat
No data.