Back to search
CVE-2008-5121
Published: Nov 18, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
dne2000.sys in Citrix Deterministic Network Enhancer (DNE) 2.21.7.233 through 3.21.7.17464, as used in (1) Cisco VPN Client, (2) Blue Coat WinProxy, and (3) SafeNet SoftRemote and HighAssurance Remote, allows local users to gain privileges via a crafted DNE_IOCTL DeviceIoControl request to the \\.\DNE device interface.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
VU#858993
third-party-advisory
x_refsource_CERT-VN
ADV-2008-1867
vdb-entry
x_refsource_VUPEN
5837
exploit
x_refsource_EXPLOIT-DB
ADV-2008-1868
vdb-entry
x_refsource_VUPEN
http://www.digit-labs.org/files/exploits/dne2000-call.c
x_refsource_MISC
30728
third-party-advisory
x_refsource_SECUNIA
http://support.citrix.com/article/CTX117751
x_refsource_CONFIRM
29772
vdb-entry
x_refsource_BID
4600
third-party-advisory
x_refsource_SREASON
ADV-2008-1865
vdb-entry
x_refsource_VUPEN
30753
third-party-advisory
x_refsource_SECUNIA
multiple-vendors-dne2000-priv-escalation(43153)
vdb-entry
x_refsource_XF
ADV-2008-1866
vdb-entry
x_refsource_VUPEN
30744
third-party-advisory
x_refsource_SECUNIA
30747
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now