Security Advisory

CVE-2007-4970

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-09-19 01:00:00

Last updated 2024-08-07 15:17:27

Assigner mitre

State PUBLISHED

Description

ProcessGuard 3.410 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via kernel SSDT hooks for Windows Native API functions including (1) NtCreateFile, (2) NtCreateKey, (3) NtDeleteValueKey, (4) NtOpenFile, (5) NtOpenKey, and (6) NtSetValueKey.

← Browse all CVEs View on cve.org ↗