SUPERAntiSpyware Pro X Security Vulnerability

SUPERAntispyware is a security program from SUPERAntiSpyware. A security vulnerability exists in SUPERAntispyware Pro X version v10.0.1260, which originates from a programmatic denial of service by triggering the 0x9C402140 IOCTL code in the saskutil64.sys driver...

PT-2024-15820 · Unknown · Saskutil64.Sys +1

Name of the Vulnerable Software and Affected Versions: SUPERAntiSpyware Pro X version 10.0.1260 Description: The issue concerns kernel-level API parameters manipulation and Denial of Service vulnerabilities. This can be triggered by manipulating the 0x9C402140 IOCTL code of the saskutil64.sys...

PT-2024-15553 · Iobit · Imfhpregfilter.Sys +1

Name of the Vulnerable Software and Affected Versions: IObit Malware Fighter version 11.0.0.1274 Description: The issue is related to a Denial of Service vulnerability that can be triggered by exploiting the 0x8001E00C IOCTL code of the ImfHpRegFilter.sys driver. Recommendations: For IObit Malwar...

NDIS Packet Buffer Overflow Due To Allocation/Copy Inconsistencies

Description Reading driver source code is a challenge because despite things appearing to be a vulnerability, there might be a single overlooked comment in MSDN's documentation for an obscure function that ensures that something isn't a vulnerability - in light of this challenge, I'm going to wal...

CVE-2021-21787

A privilege escalation vulnerability exists in the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O write requests. During IOCTL 0x9c40a0d8, the first dword passed in the input buffer is the device port to write to and the byte at offset 4 is the value to write via...

CVE-2018-16719

In Jingyun Antivirus v2.4.2.39, the driver file hookbody.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x00221482...

CVE-2018-16723

In Jingyun Antivirus v2.4.2.39, the driver file ZySandbox.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x12364020...

IOBit Unlocker Elevation of Privilege Vulnerability

IObit Unlocker is a free program that allows you to unlock in-use or locked files so you can delete, rename or move them. An elevation of privilege vulnerability exists in the driver in IOBit Unlocker 1.1.2. A low-privileged attacker could exploit this vulnerability by using IOCTL code 0x222124 t...

CVE-2020-14974

The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes even ones running as SYSTEM that hold a handle, via IOCTL code 0x222124...

CVE-2020-14975

The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to delete, move, or copy arbitrary files via IOCTL code 0x222124...

CVE-2020-14974

The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes even ones running as SYSTEM that hold a handle, via IOCTL code 0x222124...

Code injection

The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes even ones running as SYSTEM that hold a handle, via IOCTL code 0x222124...

Code injection

The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to delete, move, or copy arbitrary files via IOCTL code 0x222124...

CVE-2020-14974

The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes even ones running as SYSTEM that hold a handle, via IOCTL code 0x222124...

Code injection

ftusbbus2.sys in FabulaTech USB for Remote Desktop through 2020-02-19 allows privilege escalation via crafted IoCtl code related to a USB HID device...

CVE-2019-7630

An issue was discovered in gdrv.sys in Gigabyte APP Center before 19.0227.1. The vulnerable driver exposes a wrmsr instruction via IOCTL 0xC3502580 and does not properly filter the target Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation o...

PT-2020-11248 · Gigabyte · Gigabyte App Center

Name of the Vulnerable Software and Affected Versions: Gigabyte APP Center version 19.0227.1 and earlier Description: An issue was discovered in the gdrv.sys driver. The vulnerable driver exposes a wrmsr instruction via IOCTL 0xC3502580 and does not properly filter the target Model Specific...

CVE-2019-15664

An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120404 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an out-of-bounds read that can be used as part of a chain to escalate privileges issue 2 of 2...

CVE-2018-15738

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x8000205F...

CVE-2018-19084

RegFilter.sys in IOBit Malware Fighter 6.2 is susceptible to a stack-based buffer overflow when an attacker uses IOCTL 0x8006E05C with a size larger than 8 bytes. This can lead to denial of service or code execution with root privileges...