CVE-2009-2918

Severity CVSS v4.0:
Pending analysis
Type:
CWE-20 Input Validation
Publication date:
21/08/2009
Last modified:
09/04/2025

Description

The tgbvpn.sys driver in TheGreenBow IPSec VPN Client 4.61.003 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a crafted request to the 0x80000034 IOCTL, probably involving an input or output buffer size of 0.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:thegreenbow:thegreenbow_vpn_client:4.61.003:*:*:*:*:*:*:*