CVE-2008-5724
First published: Fri Dec 26 2008(Updated: )
The Personal Firewall driver (aka epfw.sys) 3.0.672.0 and earlier in ESET Smart Security 3.0.672 and earlier allows local users to gain privileges via a crafted IRP in a certain METHOD_NEITHER IOCTL request to \Device\Epfw that overwrites portions of memory.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ESET Smart Security for Windows | <=3.0.672 | |
| ESET Smart Security for Windows | =3.0.551 | |
| ESET Smart Security for Windows | =3.0.560 | |
| ESET Smart Security for Windows | =3.0.563 | |
| ESET Smart Security for Windows | =3.0.621 | |
| ESET Smart Security for Windows | =3.0.642 | |
| ESET Smart Security for Windows | =3.0.650 | |
| ESET Smart Security for Windows | =3.0.657 | |
| ESET Smart Security for Windows | =3.0.667 | |
| ESET Smart Security for Windows | =3.0.669 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.eset.com/joomla/index.php?option=com_content&task=view&id=4113&Itemid=5
- http://www.ntinternals.org/ntiadv0807/ntiadv0807.html
- http://secunia.com/advisories/33210
- http://www.securityfocus.com/bid/32917
- http://www.vupen.com/english/advisories/2008/3456
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47477
Frequently Asked Questions
What is the severity of CVE-2008-5724?
CVE-2008-5724 is considered a high severity vulnerability due to its potential to allow local users to gain elevated privileges.
How do I fix CVE-2008-5724?
To resolve CVE-2008-5724, upgrade ESET Smart Security to version 3.0.672.1 or later.
Which versions of ESET Smart Security are affected by CVE-2008-5724?
CVE-2008-5724 affects ESET Smart Security versions 3.0.672 and earlier.
What does CVE-2008-5724 exploit in ESET Smart Security?
CVE-2008-5724 exploits a vulnerability in the Personal Firewall driver epfw.sys that allows memory overwriting via crafted IRP requests.
Can CVE-2008-5724 be exploited remotely?
No, CVE-2008-5724 can only be exploited locally by users on the affected system.
- agent/references
- agent/type
- agent/severity
- agent/weakness
- agent/softwarecombine
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/eset
- canonical/eset smart security for windows
- version/eset smart security for windows/3.0.672
- version/eset smart security for windows/3.0.551
- version/eset smart security for windows/3.0.560
- version/eset smart security for windows/3.0.563
- version/eset smart security for windows/3.0.621
- version/eset smart security for windows/3.0.642
- version/eset smart security for windows/3.0.650
- version/eset smart security for windows/3.0.657
- version/eset smart security for windows/3.0.667
- version/eset smart security for windows/3.0.669