Vulnerability Note VU#858993
Deterministic Network Enhancer privilege escalation vulnerability
The Deterministic Network driver contains a privilege escalation vulnerability, which can allow a local attacker to execute code with kernel privileges.
Deterministic Networks provides a product called Deterministic Network Enhancer (DNE), which extends the Microsoft Windows networking stack. DNE is packaged with multiple applications, including the Cisco VPN Client. The DNE driver, which is provided by dne2000.sys, is vulnerable to privilege escalation. By making a certain ioctl to the DNE device driver, it is possible to execute code with windows kernel privileges.
A local attacker may be able to execute code with windows kernel privileges.
Apply an update
This issue is addressed in dne2000.sys version 220.127.116.1102. This driver is available from the DNE support page.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Blue Coat Systems||Affected||-||19 Jun 2008|
|Cisco Systems, Inc.||Affected||17 Jun 2008||18 Jun 2008|
|Deterministic Networks, Inc||Affected||-||18 Jun 2008|
|SafeNet||Affected||-||27 Jun 2008|
CVSS Metrics (Learn More)
This vulnerability was reported by mu-b at Digit-Labs.
This document was written by Will Dormann.
- CVE IDs: Unknown
- Date Public: 17 Jun 2008
- Date First Published: 18 Jun 2008
- Date Last Updated: 27 Jun 2008
- Severity Metric: 22.50
- Document Revision: 9
If you have feedback, comments, or additional information about this vulnerability, please send us email.