CVE-2008-6000

CVE-2008-6000 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service (system crash) or gain privileges via a crafted IOCTL request, as demonstrated by execution of the KeSetEvent function with modified register contents.

Learn more about our User Device Pen Test.