CVE-2008-5049

Buffer overflow in AKEProtect.sys 3.3.3.0 in ISecSoft Anti-Keylogger Elite 3.3.0 and earlier, and possibly other versions including 3.3.3, allows local users to gain privileges via long inputs to the (1) 0x002224A4, (2) 0x002224C0, and (3) 0x002224CC IOCTL.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 37%
VendorProductVersion
isecsoftanti-keylogger_elite
𝑥
≤ 3.3.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/32634
http://securityreason.com/securityalert/4582
http://www.ntinternals.org/ntiadv0802/ntiadv0802.html
http://www.securityfocus.com/bid/32202
https://exchange.xforce.ibmcloud.com/vulnerabilities/46465
https://www.exploit-db.com/exploits/7054
http://secunia.com/advisories/32634
http://securityreason.com/securityalert/4582
http://www.ntinternals.org/ntiadv0802/ntiadv0802.html
http://www.securityfocus.com/bid/32202
https://exchange.xforce.ibmcloud.com/vulnerabilities/46465
https://www.exploit-db.com/exploits/7054