CVE-2008-6000 Information

Description

The GDTdiIcpt.sys driver in G DATA AntiVirus 2008 InternetSecurity 2008 and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values which allows local users to cause a denial of service (system crash) or gain privileges via a crafted IOCTL request as demonstrated by execution of the KeSetEvent function with modified register contents.

Reference

http://secunia.com/advisories/31941 http://trapkit.de/advisories/TKADV2008-008.txt http://www.securityfocus.com/bid/31246 http://www.vupen.com/english/advisories/2008/2636 https://exchange.xforce.ibmcloud.com/vulnerabilities/45249