IOBit Malware Fighter Stack Buffer Overflow Vulnerability

IObit Malware Fighter is an anti-malware and antivirus program for Microsoft Windows operating systems designed to remove and protect against malware, including trojans, rootkits and ransomware. A stack buffer overflow vulnerability exists in RegFilter.sys in IOBit Malware Fighter 6.2. An attacke...

IOBit Malware Fighter stack buffer overflow vulnerability (CNVD-2018-23264)

IObit Malware Fighter is an anti-malware and antivirus program for Microsoft Windows operating systems designed to remove and protect against malware, including trojans, rootkits and ransomware. A stack buffer overflow vulnerability exists in RegFilter.sys in IOBit Malware Fighter 6.2. An attacke...

CVE-2018-19087

RegFilter.sys in IOBit Malware Fighter 6.2 is susceptible to a stack-based buffer overflow when an attacker uses IOCTL 0x8006E044 with a size larger than 8 bytes. This can lead to denial of service or code execution with root privileges...

Denial of Service Vulnerability in KsysCall.sys Driver of JM Firewall

Jiangmin Firewall is a network security protection tool designed to address the safety of individual users on the Internet, the product incorporates advanced network access dynamic monitoring technology to thoroughly solve the invasion of hacker attacks, Trojan horse programs and Internet viruses...

Saga Radio SAGA1-L8B Replay Attack and Command Forgery Vulnerability

This vulnerability allows remote attackers to issue commands on vulnerable installations of Saga Radio equipment. Authentication is not required to exploit this vulnerability. The specific flaw exists with the communication between the transmitter and receiver pair. By using a fixed control code ...

Telecrane F25 Replay Attack Vulnerability

This vulnerability allows remote attackers to issue commands on vulnerable installations of Telecrane equipment. Authentication is not required to exploit this vulnerability. The specific flaw exists with the communication between the transmitter and receiver pair. By using a fixed control code a...

MalwareFox AntiMalware v2.74.206.150 suffers from a denial of service vulnerability (CNVD-2018-21974)

MalwareFox AntiMalware is a suite of malware removal tools. The tool automatically detects and removes malware, cleans browsers, repairs files corrupted by rootkits and protects against virus infections in real time. A denial of service vulnerability exists in the zam32.sys driver in MalwareFox...

Denial of Service Vulnerability in Advanced SystemCare Ultimate v11.4.0.235

Advanced SystemCare Ultimate is a set of virus protection software for Windows systems. The software can be used to protect against viruses, malware, spyware, etc. A denial of service vulnerability exists in the Monitorx86.sys driver file in Advanced SystemCare Ultimate v11.4.0.235, which...

CVE-2018-6852

Sophos SafeGuard Enterprise before 8.00.5, SafeGuard Easy before 7.00.3, and SafeGuard LAN Crypt before 3.95.2 are vulnerable to Local Privilege Escalation via IOCTL 0x80202298. By crafting an input buffer we can control the execution path to the point where the nt!memset function is called to ze...

CVE-2018-10358

A pool corruption privilege escalation vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to escalate privileges on vulnerable installations due to a flaw within the processing of IOCTL 0x2200B4 in the TMWFP driver. An attacker must first obtain the ability to...

CVE-2018-10506

A out-of-bounds read information disclosure vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within the processing of IOCTL 0x220004 by the TMWFP driver. An attacker must first obtain t...

2345 Security Guard Denial of Service Vulnerability (CNVD-2018-09484)

2345 Security Guard is a set of computer security protection software from China's 2345 Corporation. A denial of service vulnerability exists in the driver file 2345BdPcSafe.sys, version X64 in 2345 Security Guard 3.7. The vulnerability arises due to an unvalidated input value from IOCTL...

CVE-2018-10976

In 2345 Security Guard 3.7, the driver file 2345BdPcSafe.sys, X64 version allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCTL 0x00222050...

2345 Security Guard Denial of Service Vulnerability (CNVD-2018-10963)

2345 Security Guard is a set of computer security protection software from China's 2345 Corporation. A denial of service vulnerability exists in the driver file 2345BdPcSafe.sys, version X64 in 2345 Security Guard 3.7. The vulnerability arises from not validating input values from IOCTL 0x0022204...

CVE-2018-10796

In 2345 Security Guard 3.7, the driver file 2345NetFirewall.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x00222014...

Trend Micro Maximum Security tmnciesc Out-of-Bounds Write Elevation of Privilege Vulnerability

Trend Micro Maximum Security is multi-device virus, malware protection software. Trend Micro Maximum Security suffers from an out-of-bounds write elevation of privilege vulnerability that originates from a lack of proper user data validation in the tmnciesc.sys driver processing IOCTL 0x222814,...

CVE-2018-9151

A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver KWatch3.sys allows local non-privileged users to crash the system via IOCTL 0x80030030...

CVE-2018-9053

In Windows Master aka Windows Optimization Master 7.99.13.604, the driver file WoptiHWDetect.SYS allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0xf10026cc...

CVE-2018-9046

In Windows Master aka Windows Optimization Master 7.99.13.604, the driver file WoptiHWDetect.SYS allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0xf100282d...

CVE-2018-9040

In Advanced SystemCare Ultimate 11.0.1.58, the driver file Monitorwin10x64.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c4060c4...