CVE-2018-18026

IMFCameraProtect.sys in IObit Malware Fighter 6.2 and possibly lower versions is vulnerable to a stack-based buffer overflow. The attacker can use DeviceIoControl to pass a user specified size which can be used to overwrite return addresses. This can lead to a denial of service or code execution...

Stack overflow

IMFCameraProtect.sys in IObit Malware Fighter 6.2 and possibly lower versions is vulnerable to a stack-based buffer overflow. The attacker can use DeviceIoControl to pass a user specified size which can be used to overwrite return addresses. This can lead to a denial of service or code execution...

Denial of Service Vulnerability in Filpp Driver for Fertostat Security V7 Software

Fertostat Security V7 is a powerful antivirus with both anti-Trojan, anti-virus and anti-Rootkit features. A denial of service vulnerability exists in the filpp.sys driver in Fertostat Security V7, which can be exploited by an attacker to cause a blue screen on a computer, resulting in a denial o...

Denial of Service Vulnerability in KvfwFilter Driver of Jiangmin Firewall

Jiangmin Firewall is a network security protection tool designed to address the safety of individual users on the Internet, the product incorporates advanced network access dynamic monitoring technology to thoroughly solve the invasion of hacker attacks, Trojan horse programs and Internet viruses...

Denial of Service Vulnerability in KsysCall Driver of JM Firewall

Jiangmin Firewall is a network security protection tool designed to address the safety of individual users on the Internet, the product incorporates advanced network access dynamic monitoring technology to thoroughly solve the invasion of hacker attacks, Trojan horse programs and Internet viruses...

Fortinet FortiClient 5.2.3 (Windows 10 x64 Creators) - Local Privilege Escalation Exploit

Exploit for windows platform in category local exploits include "stdafx.h" include include include include pragma comment lib,"psapi" PULONGLONG leakbuffer = PULONGLONGVirtualAllocLPVOID0x000000001a000000, 0x2000, MEMRESERVE | MEMCOMMIT, PAGEREADWRITE; ULONGLONG leakQWORDULONGLONG addr, HANDLE...

Denial of Service Vulnerability in Fair Smart Antivirus fildds.sys Handling Malformed Data

Fair Intelligent Antivirus 8 is an antivirus program from Beijing FairShield Technology Co. fildds.sys is a kernel mode driver in Fair Intelligent Antivirus 8. A security vulnerability exists in the fildds.sys driver in Fair Intelligent Antivirus 8 V8.1.5.6109 V8.1.7.6865. An attacker can exploit...

Denial of Service Vulnerability in Filmfd.sys Processing Malformed Data in Fair Intelligence Antivirus Software

Fair Intelligent Antivirus 8 is an antivirus program from Beijing FairShield Technology Co. filmfd.sys is a kernel mode driver in Fair Intelligent Antivirus 8. A security vulnerability exists in the filmfd.sys driver in Fair Smart Antivirus 8 V8.1.5.6109 V8.1.7.6865. An attacker can exploit this...

Jungo DriverWizard WinDriver Denial of Service Vulnerability (CNVD-2018-08677)

Jungo DriverWizard WinDriver is a PCI/USB device driver development tool from Israel's Jungo Connectivity. A denial of service vulnerability exists in windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0. An attacker can exploit this vulnerability to cause a denial of service blue screen of dea...

CVE-2018-10071

windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers to cause a denial of service BSOD via a 0x953826DB DeviceIoControl call...

Design/Logic Flaw

windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers to cause a denial of service BSOD via a 0x953826DB DeviceIoControl call...

CVE-2018-10071

windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers to cause a denial of service BSOD via a 0x953826DB DeviceIoControl call...

Sophos Tester Tool Denial of Service Vulnerability

Sophos Tester Tool is a penetration testing tool from Sophos UK. A security vulnerability exists in Sophos Tester Tool version 3.2.0.7 Beta, which stems from the program's failure to detect parameters of the DeviceIoControl code. An attacker can exploit the vulnerability to cause a blue screen or...

Null pointer dereference

In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a special DeviceIoControl code that doesn't check its argument. This argument is a memory address: if a caller passes a NULL pointer or a random invalid address, the driver will cause a Blue Screen of Death. If a program or malware does this ...

CVE-2018-6319

In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a special DeviceIoControl code that doesn't check its argument. This argument is a memory address: if a caller passes a NULL pointer or a random invalid address, the driver will cause a Blue Screen of Death. If a program or malware does this ...

CVE-2018-6319

In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a special DeviceIoControl code that doesn't check its argument. This argument is a memory address: if a caller passes a NULL pointer or a random invalid address, the driver will cause a Blue Screen of Death. If a program or malware does this ...

CVE-2017-18019

In K7 Total Security before 15.1.0.305, user-controlled input to the K7Sentry device is not sufficiently sanitized: the user-controlled input can be used to compare an arbitrary memory address with a fixed value, which in turn can be used to read the contents of arbitrary memory. Similarly, the...

Null pointer dereference

In K7 Total Security before 15.1.0.305, user-controlled input to the K7Sentry device is not sufficiently sanitized: the user-controlled input can be used to compare an arbitrary memory address with a fixed value, which in turn can be used to read the contents of arbitrary memory. Similarly, the...

CVE-2017-18019

In K7 Total Security before 15.1.0.305, user-controlled input to the K7Sentry device is not sufficiently sanitized: the user-controlled input can be used to compare an arbitrary memory address with a fixed value, which in turn can be used to read the contents of arbitrary memory. Similarly, the...

K7 Antivirus K7Sentry.sys Denial of Service Vulnerability (CNVD-2018-01082)

K7 Antivirus is a suite of anti-virus software from the Indian company K7 Computing.K7Sentry.sys is one of the kernel-mode drivers used in K7 Computing's security products. A security vulnerability exists in K7 Antivirus version 15.1.0309 in K7Sentry.sys version 15.1.0.59. An attacker can exploit...