CVE-2008-4451

ESET System Analyzer Tool 1.1.1.0 - Local Privilege Escalation via IOCTL Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4451. PoCs published by NT Internals.

AI-analyzed exploit summary This exploit targets a vulnerability in the ESET SysInspector AntiStealth driver (esiasdrv.sys) by sending a malformed IOCTL request to trigger a denial-of-service condition. The code demonstrates interaction with the vulnerable driver via NtCreateFile and NtDeviceIoControlFile.

Description

The SysInspector AntiStealth driver (esiasdrv.sys) 3.0.65535.0 in ESET System Analyzer Tool 1.1.1.0 allows local users to execute arbitrary code via a certain METHOD_NEITHER IOCTL request to \Device\esiasdrv that overwrites a pointer.

Exploits (1)

exploitdb WORKING POC VERIFIED

by NT Internals · cdoswindows

https://www.exploit-db.com/exploits/6647

View Code ZIP pw:eip

This exploit targets a vulnerability in the ESET SysInspector AntiStealth driver (esiasdrv.sys) by sending a malformed IOCTL request to trigger a denial-of-service condition. The code demonstrates interaction with the vulnerable driver via NtCreateFile and NtDeviceIoControlFile.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: ESET System Analyzer Tool 1.1.1.0 with Eset SysInspector AntiStealth driver 3.0.65535.0

No auth needed

Prerequisites: Access to the target system · Vulnerable ESET driver installed

MITRE ATT&CK