CVE-2020-10234

The AscRegistryFilter.sys kernel driver in IObit Advanced SystemCare 13.2 allows an unprivileged user to send an IOCTL to the device driver. If the user provides a NULL entry for the dwIoControlCode parameter, a kernel panic aka BSOD follows. The IOCTL codes can be found in the dispatch function:...

TrueCrypt Security Bypass Vulnerability

TrueCrypt is an open source virtual encryption disk encryption software that creates virtual disks on your hard drive without generating any files. A security vulnerability exists in the 'ProcessVolumeDeviceControlIrp' function of the Ntdriver.c file in TrueCrypt version 7.1a. A local attacker ca...

PT-2018-17665 · Malwarefox · Malwarefox Antimalware

Name of the Vulnerable Software and Affected Versions: MalwareFox AntiMalware version 2.74.0.150 Description: The issue is related to improper access control in the zam32.sys and zam64.sys drivers, which allows a non-privileged process to elevate privileges. This can be achieved by sending specif...

NProtect Anti-Virus 2007 Privilege Escalation

NProtect Anti-Virus 2007 with TKRgAc2k.sys FsContext for each process to open the device,and save key/key value /virus name /event object in FsContext. Here contains a design error , if a registry operation is intercepted and match the rules , but event handle has not been set, TKAcRg2k.sys will...