8 matches found
EUVD-2017-16465
Malware in sbrugna...
CVE-2017-7441
In Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean, a crafted IOCTL with code 0x22E1C0 might lead to kernel data leaks. Because the leak occurs at the driver level, an attacker can use this vulnerability to leak some critical informatio...
CVE-2017-6007
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean allows local users to crash the OS via a malformed IOCTL call...
Buffer overflow
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean allows local users to crash the OS via a malformed IOCTL call...
CVE-2017-6007
A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean allows local users to crash the OS via a malformed IOCTL call...
CVE-2017-6008
CVE-2017-6008 affects Sophos SurfRight HitmanPro driver HitmanPro37.sys (pre-3.7.20 Build 286). It describes a local privilege escalation via a kernel pool overflow triggered by a malformed IOCTL, enabling arbitrary kernel memory manipulation and SYSTEM-level access. Connected documents outline e...
CVE-2017-7441
In Sophos SurfRight HitmanPro before 3.7.20 Build 286 included in the HitmanPro.Alert solution and Sophos Clean, a crafted IOCTL with code 0x22E1C0 might lead to kernel data leaks. Because the leak occurs at the driver level, an attacker can use this vulnerability to leak some critical informatio...
CVE-2017-6007
CVE-2017-6007 describes a kernel pool overflow in the driver hitmanpro37.sys used by Sophos SurfRight HitmanPro (and HitmanPro.Alert/Sophos Clean). The vulnerability allows a local attacker to crash the operating system via a malformed IOCTL call. Affected software is HitmanPro before 3.7.20 Buil...