Sophos HitmanPro.Alert solution and Sophos Clean SurfRight HitmanPro security vulnerabilities

Sophos HitmanPro.Alert solution and Sophos Clean are both virus protection software from Sophos UK.SurfRight HitmanPro is one of the malware scanning tools available. A security vulnerability exists in versions prior to SurfRight HitmanPro 3.7.20 Build 286 in Sophos HitmanPro.Alert solution and...

CVE-2017-7441

In Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean, a crafted IOCTL with code 0x22E1C0 might lead to kernel data leaks. Because the leak occurs at the driver level, an attacker can use this vulnerability to leak some critical informatio...

VMware Workstation 12 Pro - Denial of Service

VMware Workstation 12 Pro - Denial of Service / Title: NULL pointer dereference vulnerability in vstor2 driver VMware Workstation Pro/Player CVE: 2017-4916 VMSA-2017-0009 Author: Borja Merino @BorjaMerino Date: May 18, 2017 Tested on: Windows 10 Pro and Windows 7 Pro SP1 with VMware® Workstation ...

VMware Workstation 12 Pro Denial Of Service

/ Title: NULL pointer dereference vulnerability in vstor2 driver VMware Workstation Pro/Player CVE: 2017-4916 VMSA-2017-0009 Author: Borja Merino @BorjaMerino Date: May 18, 2017 Tested on: Windows 10 Pro and Windows 7 Pro SP1 with VMwareAr Workstation 12 Pro 12.5.5 build-5234757 Affected: VMware...

VMware Workstation 12 Pro - Denial of Service

/ Title: NULL pointer dereference vulnerability in vstor2 driver VMware Workstation Pro/Player CVE: 2017-4916 VMSA-2017-0009 Author: Borja Merino @BorjaMerino Date: May 18, 2017 Tested on: Windows 10 Pro and Windows 7 Pro SP1 with VMware® Workstation 12 Pro 12.5.5 build-5234757 Affected: VMware...

Multiple Trend Micro Products tmeext.sys Driver Elevation of Privilege Vulnerabilities

Trend Micro Antivirus Plus, Internet Security and Maximum Security are all antivirus programs from Trend Micro. A security vulnerability exists in the tmeext.sys driver prior to version 2.0.0.1015. A local attacker can exploit this vulnerability by writing to an arbitrary memory location via a...

ESTsoft ALYac Anti-Virus 1.5 < 5.0.1.2 - Local Privilege Escalation

ESTsoft ALYac Anti-Virus 1.5 with AYDrvNT.sys = 5.0.1.2 Local Kernel Mode Privilege Escalation Vulnerability AUTHOR MJ0011 EMAIL thdecoder$126.com VULNERABLE PRODUCTS ALYac Anti-Virus 1.5 DETAILS: AYDrvNT.sys create a device called "AYDrvNTALYAC" , and handles the device io control code = 0x223e2...