CVE-2009-2450

Metadata

CVE-2009-2450
7.2
milw0rm.com, exploit-db.com, ntinternals.org, securityfocus.com, exchange.xforce.ibmcloud.com
2009-07-13
2017-09-21 21:07

Description

The OAmon.sys kernel driver 3.1.0.0 and earlier in Tall Emu Online Armor Personal Firewall AV+ before 3.5.0.12, and Personal Firewall 3.5 before 3.5.0.14, allows local users to gain privileges via crafted METHOD_NEITHER IOCTL requests to \Device\OAmon containing arbitrary kernel addresses, as demonstrated using the 0x830020C3 IOCTL.

Related Vulnerabilities