CVE-2014-2382

2014-11-20T13:55:00
ID CVE-2014-2382
Type cve
Reporter cve@mitre.org
Modified 2014-11-20T14:04:00

Description

The DfDiskLo.sys driver in Faronics Deep Freeze Standard and Enterprise 8.10 and earlier allows local administrators to cause a denial of service (crash) and execute arbitrary code via a crafted IOCTL request that writes to arbitrary memory locations, related to the IofCallDriver function.