4 matches found
CVE-2017-17408
Bitdefender Internet Security (2018) contains an integer overflow in cevakrnl.xmd that fails to validate user-supplied data, enabling remote code execution with SYSTEM privileges after a user visits a malicious page or opens a malicious file. The issue has been disclosed in ZDI-CAN-5101 (ZDI-17-9...
CVE-2017-10954
CVE-2017-10954 affects Bitdefender Internet Security 2018 (before build 7.72918). The flaw is in pdf.xmd and stems from improper validation of user-supplied data, causing an integer overflow during buffer allocation. This can allow remote code execution with SYSTEM privileges when a user visits a...
CVE-2017-17409
CVE-2017-17409 affects Bitdefender Internet Security 2018. The vulnerability lies in the emulator 0x10A in cevakrnl.xmd, where improper validation of user-supplied data can cause an integer overflow before writing to memory. This can enable a remote attacker to execute arbitrary code with SYSTEM ...
CVE-2017-17410
Bitdefender Internet Security 2018 is affected by CVE-2017-17410 due to a flaw in emulator 0x102 within cevakrnl.xmd. The vulnerability stems from insufficient validation of user-supplied data, causing a write past the end of an allocated object, which can allow a remote attacker to execute arbit...