CVE-2005-2986 | Vulnerability Database | Aqua Security

The v3flt2k.sys driver in AhnLab V3Pro 2004 Build 6.0.0.383, V3 VirusBlock 2005 Build 6.0.0.383, V3Net for Windows Server 6.0 Build 6.0.0.383 does not properly validate the source of the DeviceIoControl commands, which allows remote attackers to gain privileges.

Affected Software

Name	Vendor	Start Version	End Version
V3_virusblock_2005	Ahnlab	6.0.0.383 (including)	6.0.0.383 (including)
V3net	Ahnlab	6.0.0.383 (including)	6.0.0.383 (including)
V3pro_2004	Ahnlab	6.0.0.383 (including)	6.0.0.383 (including)

References

http://info.ahnlab.com/english/advisory/01.html
http://marc.info/?l=bugtraq\u0026m=112680062609377\u0026w=2
http://secunia.com/advisories/15674/
http://www.securityfocus.com/bid/14847
https://exchange.xforce.ibmcloud.com/vulnerabilities/22297
http://info.ahnlab.com/english/advisory/01.html
http://marc.info/?l=bugtraq\u0026m=112680062609377\u0026w=2
http://secunia.com/advisories/15674/
http://www.securityfocus.com/bid/14847
https://exchange.xforce.ibmcloud.com/vulnerabilities/22297

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-2986
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html