CVE-2011-5032 - WMDrive.sys 3.4.181.224 in WinMount 3.5.1018 allows local users to cause a denial of service (NULL p

CVE-2011-5032

Summary

WMDrive.sys 3.4.181.224 in WinMount 3.5.1018 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a crafted 0x87342000 IOCTL request to the WMDriver device.

References

http://osvdb.org/77747
http://secunia.com/advisories/46872
https://exchange.xforce.ibmcloud.com/vulnerabilities/71764

Vulnerable Configurations

cpe:2.3:a:winmount:winmount:3.5.1018:*:*:*:*:*:*:*
cpe:2.3:a:winmount:winmount:3.5.1018:*:*:*:*:*:*:*

CVSS

Base:	4.9 (as of 29-08-2017 - 01:30)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:C

refmap via4

osvdb	77747
secunia	46872
xf	winmount-ioctl-dos(71764)

Last major update

29-08-2017 - 01:30

Published

29-12-2011 - 22:55

Last modified

29-08-2017 - 01:30