cbcvebase.
CVE-2009-2450
published 2009-07-13

CVE-2009-2450: The OAmon.sys kernel driver 3.1.0.0 and earlier in Tall Emu Online Armor Personal Firewall AV+ before 3.5.0.12, and Personal Firewall 3.5 before 3.5.0.14…

PriorityP337high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
0.77%
50.9th percentile
The OAmon.sys kernel driver 3.1.0.0 and earlier in Tall Emu Online Armor Personal Firewall AV+ before 3.5.0.12, and Personal Firewall 3.5 before 3.5.0.14, allows local users to gain privileges via crafted METHOD_NEITHER IOCTL requests to \Device\OAmon containing arbitrary kernel addresses, as demonstrated using the 0x830020C3 IOCTL.

Affected

16 ranges
VendorProductVersion rangeFixed in
tallemuonline_armor_personal_firewall_av<= 3.5.0.11
tallemuonline_armor_personal_firewall_av
tallemuonline_armor_personal_firewall_av
tallemupersonal_firewall<= 3.5.0.13
tallemupersonal_firewall
tallemupersonal_firewall
tallemupersonal_firewall
tallemupersonal_firewall
tallemupersonal_firewall
tallemupersonal_firewall
tallemupersonal_firewall
tallemupersonal_firewall
tallemupersonal_firewall
tallemupersonal_firewall
tallemupersonal_firewall
tallemupersonal_firewall
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.