Search
Find a vulnerability
Search criteria
4 vulnerabilities by core_security_technologies
CVE-2008-0365 (GCVE-0-2008-0365)
Vulnerability from nvd – Published: 2008-01-18 22:00 – Updated: 2024-08-07 07:39
VLAI
EPSS
VEX
Summary
Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments to (1) IOCTL functions in the Firewall module or (2) SSDT hook handler functions in the Registry module.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
8 references
| URL | Tags |
|---|---|
| http://force.coresecurity.com/index.php?module=ar… | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/27341 | vdb-entryx_refsource_BID |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.securityfocus.com/archive/1/486513/100… | mailing-listx_refsource_BUGTRAQ |
| http://www.vupen.com/english/advisories/2008/0242 | vdb-entryx_refsource_VUPEN |
| http://www.coresecurity.com/?action=item&id=2025 | x_refsource_CONFIRM |
| http://securityreason.com/securityalert/3555 | third-party-advisoryx_refsource_SREASON |
| http://www.securitytracker.com/id?1019245 | vdb-entryx_refsource_SECTRACK |
Date Public
2008-01-17 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T07:39:35.183Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "coreforce-firewall-registry-bo(39758)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39758"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1019245"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-01-17T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments to (1) IOCTL functions in the Firewall module or (2) SSDT hook handler functions in the Registry module."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-15T20:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "coreforce-firewall-registry-bo(39758)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39758"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1019245"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-0365",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments to (1) IOCTL functions in the Firewall module or (2) SSDT hook handler functions in the Registry module."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32",
"refsource": "CONFIRM",
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "coreforce-firewall-registry-bo(39758)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39758"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"name": "http://www.coresecurity.com/?action=item\u0026id=2025",
"refsource": "CONFIRM",
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1019245"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-0365",
"datePublished": "2008-01-18T22:00:00.000Z",
"dateReserved": "2008-01-18T00:00:00.000Z",
"dateUpdated": "2024-08-07T07:39:35.183Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-0366 (GCVE-0-2008-0366)
Vulnerability from nvd – Published: 2008-01-18 22:00 – Updated: 2024-08-07 07:39
VLAI
EPSS
VEX
Summary
CORE FORCE before 0.95.172 does not properly validate arguments to SSDT hook handler functions in the Registry module, which allows local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
7 references
| URL | Tags |
|---|---|
| http://force.coresecurity.com/index.php?module=ar… | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/27341 | vdb-entryx_refsource_BID |
| http://www.securityfocus.com/archive/1/486513/100… | mailing-listx_refsource_BUGTRAQ |
| http://www.vupen.com/english/advisories/2008/0242 | vdb-entryx_refsource_VUPEN |
| http://www.coresecurity.com/?action=item&id=2025 | x_refsource_CONFIRM |
| http://securityreason.com/securityalert/3555 | third-party-advisoryx_refsource_SREASON |
| http://www.securitytracker.com/id?1019245 | vdb-entryx_refsource_SECTRACK |
Date Public
2008-01-17 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T07:39:35.349Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1019245"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-01-17T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "CORE FORCE before 0.95.172 does not properly validate arguments to SSDT hook handler functions in the Registry module, which allows local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-15T20:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1019245"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-0366",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "CORE FORCE before 0.95.172 does not properly validate arguments to SSDT hook handler functions in the Registry module, which allows local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32",
"refsource": "CONFIRM",
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"name": "http://www.coresecurity.com/?action=item\u0026id=2025",
"refsource": "CONFIRM",
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1019245"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-0366",
"datePublished": "2008-01-18T22:00:00.000Z",
"dateReserved": "2008-01-18T00:00:00.000Z",
"dateUpdated": "2024-08-07T07:39:35.349Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-0365 (GCVE-0-2008-0365)
Vulnerability from cvelistv5 – Published: 2008-01-18 22:00 – Updated: 2024-08-07 07:39
VLAI
EPSS
VEX
Summary
Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments to (1) IOCTL functions in the Firewall module or (2) SSDT hook handler functions in the Registry module.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
8 references
| URL | Tags |
|---|---|
| http://force.coresecurity.com/index.php?module=ar… | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/27341 | vdb-entryx_refsource_BID |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.securityfocus.com/archive/1/486513/100… | mailing-listx_refsource_BUGTRAQ |
| http://www.vupen.com/english/advisories/2008/0242 | vdb-entryx_refsource_VUPEN |
| http://www.coresecurity.com/?action=item&id=2025 | x_refsource_CONFIRM |
| http://securityreason.com/securityalert/3555 | third-party-advisoryx_refsource_SREASON |
| http://www.securitytracker.com/id?1019245 | vdb-entryx_refsource_SECTRACK |
Date Public
2008-01-17 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T07:39:35.183Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "coreforce-firewall-registry-bo(39758)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39758"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1019245"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-01-17T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments to (1) IOCTL functions in the Firewall module or (2) SSDT hook handler functions in the Registry module."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-15T20:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "coreforce-firewall-registry-bo(39758)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39758"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1019245"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-0365",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments to (1) IOCTL functions in the Firewall module or (2) SSDT hook handler functions in the Registry module."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32",
"refsource": "CONFIRM",
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "coreforce-firewall-registry-bo(39758)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39758"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"name": "http://www.coresecurity.com/?action=item\u0026id=2025",
"refsource": "CONFIRM",
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1019245"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-0365",
"datePublished": "2008-01-18T22:00:00.000Z",
"dateReserved": "2008-01-18T00:00:00.000Z",
"dateUpdated": "2024-08-07T07:39:35.183Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2008-0366 (GCVE-0-2008-0366)
Vulnerability from cvelistv5 – Published: 2008-01-18 22:00 – Updated: 2024-08-07 07:39
VLAI
EPSS
VEX
Summary
CORE FORCE before 0.95.172 does not properly validate arguments to SSDT hook handler functions in the Registry module, which allows local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
7 references
| URL | Tags |
|---|---|
| http://force.coresecurity.com/index.php?module=ar… | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/27341 | vdb-entryx_refsource_BID |
| http://www.securityfocus.com/archive/1/486513/100… | mailing-listx_refsource_BUGTRAQ |
| http://www.vupen.com/english/advisories/2008/0242 | vdb-entryx_refsource_VUPEN |
| http://www.coresecurity.com/?action=item&id=2025 | x_refsource_CONFIRM |
| http://securityreason.com/securityalert/3555 | third-party-advisoryx_refsource_SREASON |
| http://www.securitytracker.com/id?1019245 | vdb-entryx_refsource_SECTRACK |
Date Public
2008-01-17 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T07:39:35.349Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1019245"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2008-01-17T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "CORE FORCE before 0.95.172 does not properly validate arguments to SSDT hook handler functions in the Registry module, which allows local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-15T20:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1019245"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2008-0366",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "CORE FORCE before 0.95.172 does not properly validate arguments to SSDT hook handler functions in the Registry module, which allows local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32",
"refsource": "CONFIRM",
"url": "http://force.coresecurity.com/index.php?module=articles\u0026func=display\u0026aid=32"
},
{
"name": "27341",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/27341"
},
{
"name": "20080117 CORE-2007-1119: CORE FORCE Kernel Buffer Overflow",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/486513/100/0/threaded"
},
{
"name": "ADV-2008-0242",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2008/0242"
},
{
"name": "http://www.coresecurity.com/?action=item\u0026id=2025",
"refsource": "CONFIRM",
"url": "http://www.coresecurity.com/?action=item\u0026id=2025"
},
{
"name": "3555",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/3555"
},
{
"name": "1019245",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1019245"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2008-0366",
"datePublished": "2008-01-18T22:00:00.000Z",
"dateReserved": "2008-01-18T00:00:00.000Z",
"dateUpdated": "2024-08-07T07:39:35.349Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}