First published: Mon Oct 06 2008(Updated: )
The SysInspector AntiStealth driver (esiasdrv.sys) 3.0.65535.0 in ESET System Analyzer Tool 1.1.1.0 allows local users to execute arbitrary code via a certain METHOD_NEITHER IOCTL request to \Device\esiasdrv that overwrites a pointer.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Eset Software System Analyzer Tool | =1.1.1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2008-4451 is classified as a high severity vulnerability due to the potential for local users to execute arbitrary code.
To mitigate CVE-2008-4451, update to a newer version of the ESET System Analyzer Tool that addresses this vulnerability.
CVE-2008-4451 affects users running ESET System Analyzer Tool version 1.1.1.0 with the vulnerable SysInspector AntiStealth driver.
An exploit of CVE-2008-4451 can allow local users to overwrite a pointer and execute arbitrary code with elevated privileges.
Yes, users should check for updates from ESET to patch CVE-2008-4451 and secure their systems.