4 matches found
Design/Logic Flaw
EPP.sys in Emsisoft Anti-Malware prior to version 2018.12 allows an attacker to bypass ACLs because Interpreted Device Characteristics lacks FILEDEVICESECUREOPEN and therefore files and directories "inside" the \.\EPP device are not properly protected, leading to unintended impersonation or objec...
CVE-2019-7651
EPP.sys in Emsisoft Anti-Malware prior to version 2018.12 allows an attacker to bypass ACLs because Interpreted Device Characteristics lacks FILEDEVICESECUREOPEN and therefore files and directories "inside" the \.\EPP device are not properly protected, leading to unintended impersonation or objec...
CVE-2019-7651
CVE-2019-7651 affects EPP.sys in Emsisoft Anti‑Malware prior to 2018.12. The root cause is that Interpreted Device Characteristics lacks FILE_DEVICE_SECURE_OPEN, so files and directories inside the \.\EPP device are not properly protected, enabling unintended impersonation or object creation due ...
CVE-2019-7651
EPP.sys in Emsisoft Anti-Malware prior to version 2018.12 allows an attacker to bypass ACLs because Interpreted Device Characteristics lacks FILEDEVICESECUREOPEN and therefore files and directories "inside" the \.\EPP device are not properly protected, leading to unintended impersonation or objec...