Vulnerabilities > CVE-2004-1718 - Local Denial Of Service vulnerability in Pedestal Software Integrity Protection Driver 1.2/1.3/1.4

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

low complexity

pedestal-software

NVD

Published: 2004-08-17

Updated: 2017-07-11

Summary

The ZwOpenSection function in Integrity Protection Driver (IPD) 1.4 and earlier allows local users to cause a denial of service (crash) via an invalid pointer in the "oa" argument.

Vulnerable Configurations

Part	Description	Count
Application	Pedestal_Software Pedestal Software Integrity Protection Driver 1.2 Pedestal Software Integrity Protection Driver 1.3 Pedestal Software Integrity Protection Driver 1.4	3

References

http://marc.info/?l=bugtraq&m=109276749821133&w=2
http://secunia.com/advisories/12169
http://www.ngsec.com/docs/advisories/NGSEC-2004-6.txt
http://www.securityfocus.com/bid/10965
https://exchange.xforce.ibmcloud.com/vulnerabilities/17010