Vulnerabilities > CVE-2011-5032 - Unspecified vulnerability in Winmount 3.5.1018
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
WMDrive.sys 3.4.181.224 in WinMount 3.5.1018 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a crafted 0x87342000 IOCTL request to the WMDriver device.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 51034 CVE ID: CVE-2011-5032 WinMount是一款免费的Windows小工具,具有压缩、解压、浏览压缩和挂载DVD、CD、虚拟机硬盘镜像等功能。 WinMount WMDrive.sys驱动程序在IOCTL处理的实现上存在本地拒绝服务漏洞,本地攻击者可利用此漏洞造成系统崩溃,导致拒绝服务。 0 WinMount 3.5.1018 厂商补丁: WinMount -------- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.winmount.com/ |
| id | SSV:30006 |
| last seen | 2017-11-19 |
| modified | 2012-01-04 |
| published | 2012-01-04 |
| reporter | Root |
| title | WinMount "WMDrive.sys"驱动程序IOCTL处理本地拒绝服务漏洞 |