CVE-2008-5121
Published Nov 18, 2008
Last updated 7 years ago
Overview
- Description
- dne2000.sys in Citrix Deterministic Network Enhancer (DNE) 2.21.7.233 through 3.21.7.17464, as used in (1) Cisco VPN Client, (2) Blue Coat WinProxy, and (3) SafeNet SoftRemote and HighAssurance Remote, allows local users to gain privileges via a crafted DNE_IOCTL DeviceIoControl request to the \\.\DNE device interface.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-264
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:citrix:deterministic_network_enhancer:2.21.7.223:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "10F0D8E9-67F6-4484-9BD1-A16228A41D0E"
},
{
"criteria": "cpe:2.3:a:citrix:deterministic_network_enhancer:3.21.7.17464:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "153E29F0-3E68-4CF3-B5B3-8A63E101A650"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:bluecoat:winproxy:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "BC5D863E-670D-4849-960B-FEEA70C95E74"
},
{
"criteria": "cpe:2.3:a:cisco:vpn_client:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "099829D2-EC37-4BEF-91B7-375478189C1B"
},
{
"criteria": "cpe:2.3:a:safenet:highassurance_remote:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7212B1EF-2AD3-42DD-A6D7-DB18F3ED2923"
},
{
"criteria": "cpe:2.3:a:safenet:softremote_vpn_client:*:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0C384818-1B30-4EBA-99DE-E64008F72985"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]