2009-07-13 17:00:00
mitre
PUBLISHED
The OAmon.sys kernel driver 3.1.0.0 and earlier in Tall Emu Online Armor Personal Firewall AV+ before 3.5.0.12, and Personal Firewall 3.5 before 3.5.0.14, allows local users to gain privileges via crafted METHOD_NEITHER IOCTL requests to DeviceOAmon containing arbitrary kernel addresses, as demonstrated using the 0x830020C3 IOCTL.