CVE-2009-2450

CVE-2009-2450 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The OAmon.sys kernel driver 3.1.0.0 and earlier in Tall Emu Online Armor Personal Firewall AV+ before 3.5.0.12, and Personal Firewall 3.5 before 3.5.0.14, allows local users to gain privileges via crafted METHOD_NEITHER IOCTL requests to \Device\OAmon containing arbitrary kernel addresses, as demonstrated using the 0x830020C3 IOCTL.

Learn more about our User Device Pen Test.