CVE-2008-0779

CVE Database · CVE-2008-0779

CVE-2008-0779

· N/AModified

CVSS v3.1

N/A

EPSS

0.40%

Published

Feb 14, 2008

Modified

Apr 22, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The fortimon.sys device driver in Fortinet FortiClient Host Security 3.0 MR5 Patch 3 and earlier does not properly initialize its DeviceExtension, which allows local users to access kernel memory and execute arbitrary code via a crafted request.

Weaknesses (CWE)

CWE-264

Affected Products (1)

fortinet · forticlient_host_securityvulnerable

References (18)

http://kc.forticare.com/default.asp?id=3618

http://secunia.com/advisories/28975

Vendor Advisory

http://securityreason.com/securityalert/3660

http://www.reversemode.com/index.php?option=com_mamblog&Itemid=15&task=show&action=view&id=47&Itemid=15

http://www.securityfocus.com/archive/1/488071/100/0/threaded

http://www.securityfocus.com/bid/27776

http://www.securitytracker.com/id?1019415

http://www.vupen.com/english/advisories/2008/0541/references

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/40512

http://kc.forticare.com/default.asp?id=3618

KEV Catalog EPSS Scores Vendors All CVEs