Vulnerability Details : CVE-2008-1932

Integer overflow in Realtek HD Audio Codec Drivers RTKVHDA.sys and RTKVHDA64.sys before 6.0.1.5605 on Windows Vista allows local users to execute arbitrary code via a crafted IOCTL request.

Vulnerability category: OverflowExecute code

Published 2008-04-25 06:05:00

Updated 2018-10-11 20:38:03

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2008-1932

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2008-1932

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
6.8	MEDIUM	AV:L/AC:L/Au:S/C:C/I:C/A:C	3.1	10.0	[email protected]
Access Vector: Local Access Complexity: Low Authentication: Single Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2008-1932

CWE-189

Assigned by: [email protected] (Primary)

References for CVE-2008-1932

Products affected by CVE-2008-1932

Realtek » Hd Audio Codec Drivers
Versions up to, including, (<=) 6.0.1.5604
cpe:2.3:a:realtek:hd_audio_codec_drivers:*:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Windows-nt » Version: Vista X32 Edition
When used together with: Microsoft » Windows Vista » X64 Edition