Multiple SlySoft Products - Driver IOCTL Request Multiple Local Buffer Overflow Vulnerabilities

2009-03-12T00:00:00
ID EDB-ID:32850
Type exploitdb
Reporter Nikita Tarakanov
Modified 2009-03-12T00:00:00

Description

Multiple SlySoft Products Driver IOCTL Request Multiple Local Buffer Overflow Vulnerabilities. CVE-2009-0824. Local exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/34103/info

Multiple SlySoft products are prone to multiple buffer-overflow vulnerabilities because they fail to adequately validate user-supplied input.

A local attacker can exploit these issues to execute arbitrary code with SYSTEM-level privileges. Failed attacks will result in denial-of-service conditions.

The following applications are vulnerable:

SlySoft AnyDVD 6.5.2.2
SlySoft AnyDVD HD 6.5.2.2
SlySoft Virtual CloneDrive 5.4.2.3
SlySoft CloneDVD 2.9.2.0
SlySoft CloneCD 5.3.1.3

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/32850.zip