CVE-2008-5731

PGP Desktop 9.0.6 and 9.9.0 - Denial of Service via IOCTL Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5731. PoCs published by Evilcry.

AI-analyzed exploit summary This exploit demonstrates a local denial-of-service (DoS) vulnerability in PGP Desktop 9.0.6 by sending a malformed IOCTL request to the PGPwded.sys driver, causing a BSOD. The PoC uses the CreateFileA and DeviceIoControl APIs to trigger the vulnerability.

Description

The PGPwded device driver (aka PGPwded.sys) in PGP Corporation PGP Desktop 9.0.6 build 6060 and 9.9.0 build 397 allows local users to cause a denial of service (system crash) and possibly gain privileges via a certain METHOD_BUFFERED IOCTL request that overwrites portions of memory, related to a "Driver Collapse." NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Evilcry · phpdoswindows

https://www.exploit-db.com/exploits/7556

View Code ZIP pw:eip

This exploit demonstrates a local denial-of-service (DoS) vulnerability in PGP Desktop 9.0.6 by sending a malformed IOCTL request to the PGPwded.sys driver, causing a BSOD. The PoC uses the CreateFileA and DeviceIoControl APIs to trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: PGP Desktop 9.0.6 (Build 6060)

No auth needed

Prerequisites: Local access to the target system · PGP Desktop 9.0.6 installed

MITRE ATT&CK