63 matches found
CVE-2024-7250
CVE-2024-7250 : A local privilege escalation affecting Comodo Internet Security Pro. The flaw is in the cmdagent executable, where an attacker who can run low-privilege code can abuse a symbolic link to delete a file and escalate to SYSTEM, gaining arbitrary code execution. Public details across ...
Comodo Internet Security Pro 安全漏洞
Comodo Internet Security Pro is an Internet security suite from Comodo, USA. A security vulnerability exists in Comodo Internet Security Pro that stems from a link-tracking local elevation of privilege vulnerability in the cmdagent executable. An attacker can exploit this vulnerability to elevate...
Comodo Internet Security Pro 安全漏洞
Comodo Internet Security Pro is an Internet security suite from Comodo, USA. A security vulnerability exists in Comodo Internet Security Pro that stems from the presence of a Directory Traversal Local Elevation of Privilege vulnerability due to failure to properly validate user-supplied paths...
Comodo Internet Security Pro 安全漏洞
Comodo Internet Security Pro is an Internet security suite from Comodo, USA. A security vulnerability exists in Comodo Internet Security Pro that stems from the presence of a link-tracking local elevation of privilege vulnerability in an executable file named cmdagent. An attacker can exploit the...
CVE-2020-10193
ESET Archive Support Module before 1294 allows virus-detection bypass via crafted RAR Compression Information in an archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro macOS, Cyber Security macOS, Mobile Security for Android...
Design/Logic Flaw
ESET Archive Support Module before 1294 allows virus-detection bypass via crafted RAR Compression Information in an archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro macOS, Cyber Security macOS, Mobile Security for Android...
CVE-2020-10193
ESET Archive Support Module before 1294 allows virus-detection bypass via crafted RAR Compression Information in an archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro macOS, Cyber Security macOS, Mobile Security for Android...
Design/Logic Flaw
The ESET AV parsing engine allows virus-detection bypass via a crafted BZ2 Checksum field in an archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro macOS, Cyber Security macOS, Mobile Security for Android, Smart TV Security,...
CVE-2020-10180
The ESET AV parsing engine allows virus-detection bypass via a crafted BZ2 Checksum field in an archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro macOS, Cyber Security macOS, Mobile Security for Android, Smart TV Security,...
CVE-2020-9264
ESET Archive Support Module before 1296 allows virus-detection bypass via a crafted Compression Information Field in a ZIP archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro macOS, Cyber Security macOS, Mobile Security for...
Design/Logic Flaw
ESET Archive Support Module before 1296 allows virus-detection bypass via a crafted Compression Information Field in a ZIP archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro macOS, Cyber Security macOS, Mobile Security for...
CVE-2020-9264
ESET Archive Support Module before 1296 allows virus-detection bypass via a crafted Compression Information Field in a ZIP archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro macOS, Cyber Security macOS, Mobile Security for...
CVE-2020-9264
The CVE refers to a vulnerability in the ESET Archive Support Module present in versions before 1296, which allows a virus-detection bypass via a crafted Compression Information Field in ZIP archives. Affected products include Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Secu...
Become a Certified Hacker With This Hands-On Training Course
It seems as though not a day goes by without news spreading over another major cyber attack. Hackers are becoming increasingly efficient at targeting everything from small startups to Fortune 500 companies and even entire government agencies, and as the world moves further away from traditional...
WatchDog Anti-Malware and Online Security Pro zam32.sys Driver Denial of Service Vulnerability
WatchDog Anti-Malware and Online Security Pro are both cloud-based, multi-engine malware scanners from WatchDog Development in the U.S. zam32.sys driver is one of the zam32 system drivers. A denial of service vulnerability exists in the zam32.sys driver in Watchdog Anti-Malware version 2.74.186.1...
Watchdog Development Anti-Malware/Online Security Pro Denial of Service Vulnerability
WatchDog Anti-Malware and Online Security Pro are both cloud-based, multi-engine malware scanners from WatchDogDevelopment, USA. zam32.sys driver is one of the zam32 system drivers. A security vulnerability exists in the zam32.sys driver in Watchdog Anti-Malware version 2.74.186.150 and Online...
CVE-2017-15921
In Watchdog Anti-Malware 2.74.186.150 and Online Security Pro 2.74.186.150, the zam32.sys driver contains a NULL pointer dereference vulnerability that gets triggered when sending an operation to ioctl 0x80002010. This is due to the input buffer being NULL or the input buffer size being 0 as they...
CVE-2017-15920
In Watchdog Anti-Malware 2.74.186.150 and Online Security Pro 2.74.186.150, the zam32.sys driver contains a NULL pointer dereference vulnerability that gets triggered when sending an operation to ioctl 0x80002054. This is due to the input buffer being NULL or the input buffer size being 0 as they...
Null pointer dereference
In Watchdog Anti-Malware 2.74.186.150 and Online Security Pro 2.74.186.150, the zam32.sys driver contains a NULL pointer dereference vulnerability that gets triggered when sending an operation to ioctl 0x80002054. This is due to the input buffer being NULL or the input buffer size being 0 as they...
CVE-2017-15920
In Watchdog Development Watchdog Anti-Malware 2.74.186.150 and Online Security Pro 2.74.186.150, the zam32.sys driver has a NULL pointer dereference when handling IOCTL 0x80002054 due to an input buffer being NULL or size 0. This is a hardware/driver-level issue within zam32.sys and is documented...