38 matches found
CVE-2012-1459
CVE-2012-1459 affects multiple antivirus products including ClamAV. The issue is a vulnerability in the TAR file parser where a TAR archive entry length field could correspond to the entire entry plus part of the header of the next entry, allowing remote attackers to bypass malware detection. The...
CVE-2012-1457
CVE-2012-1457 affects the TAR file parser in multiple antivirus products (e.g., ClamAV and others) and allows remote attackers to bypass malware detection by crafting a TAR entry whose length exceeds the TAR file size. Connected advisories confirm this issue across vendor updates (e.g., openSUSE ...
CVE-2012-1443
CVE-2012-1443 describes a bypass in the RAR file parser used by multiple antivirus products (e.g., ClamAV 0.96.4-related integrations and several vendors) where a RAR file starting with an MZ character sequence can be analyzed by user-assisted remote attackers to bypass malware detection. The evi...
CVE-2012-1461
The CVE-2012-1461 entry documents a vulnerability in the Gzip file parser used by multiple antivirus products (e.g., AVG, Bitdefender, Kaspersky, Symantec Endpoint Protection, Trend Micro, and others) that allows remote attackers to bypass malware detection by delivering a .tar.gz file containing...
CVE-2012-1423
The CVE-2012-1423 entry covers a TAR file parser flaw affecting multiple antivirus products (Command Antivirus 5.2.11.5; Emsisoft Anti-Malware 5.1.0.1; F-Prot Antivirus 4.6.2.117; Fortinet Antivirus 4.2.254.0; Ikarus T3 CLI Scanner 1.1.97.0; K7 AntiVirus 9.77.3565; NOD32 5795; Norman 6.06.12; PC ...
CVE-2018-5082
CVE-2018-5082 affects K7 AntiVirus 15.1.0306 via the driver file K7FWHlpr.sys. The vulnerability arises from unvalidated input values received through IOCTL 0x83002128, allowing a local user to trigger a denial of service (BSOD) and potentially other impact. Connected documents corroborate the sa...
CVE-2017-16557
CVE-2017-16557 concerns K7 Antivirus Premium (prior to 15.1.0.53) where a local user can gain privileges by sending a specific IOCTL after configuring memory in a particular way. The underlying issue is a local–privilege escalation involving an IOCTL interface exposed by the product. Public refer...
CVE-2012-1420
The CVE-2012-1420 entry concerns multiple antivirus products (Quick Heal/Cat QuickHeal 11.00; Command Antivirus 5.2.11.5; F-Prot 4.6.2.117; Fortinet 4.2.254.0; K7 9.77.3565; Kaspersky 7.0.0.125; Antimalware Engine 1.1.6402.0; Microsoft Security Essentials 2.0; NOD32 5795; Norman 6.06.12; Panda 10...
CVE-2017-16550
CVE-2017-16550 affects K7 Antivirus Premium prior to 15.1.0.53. The vulnerability allows a local attacker to write to arbitrary memory locations via a specific set of IOCTL calls, enabling privilege escalation. Root cause described as memory corruption presented by IOCTL handling. Impact includes...
CVE-2017-17465
The CVE-2017-17465 entry concerns K7Sentry.sys (kernel-mode driver) in K7 Antivirus 15.1.0309, version 15.1.0.59. A NULL pointer dereference is triggered by a 0x95002574 DeviceIoControl request, leading to a denial-of-service condition. Multiple connected records corroborate the driver and versio...
CVE-2017-16549
CVE-2017-16549 affects K7 Antivirus Premium prior to version 15.1.0.53 . The issue allows local users to write to arbitrary memory locations via a specific set of IOCTL calls, resulting in local privilege escalation (gaining higher privileges). Exploitation status is not detailed in the provided ...
CVE-2017-16555
CVE-2017-16555 affects K7 Antivirus Premium prior to version 15.1.0.53 . The vulnerability enables local privilege escalation by sending a specific IOCTL after a memory setup condition, as described in the CVE description. The CVSS vectors indicate local attack with high impact to confidentiality...
CVE-2018-5217
CVE-2018-5217 affects K7 Antivirus 15.1.0306. The vulnerable component is the kernel‑mode driver K7Sentry.sys, exploitable via IOCTL 0x95002578. The root cause is unvalidated input values from this IOCTL, allowing a local user to cause a denial of service (BSOD) and potentially other unspecified ...
CVE-2017-17429
CVE-2017-17429 affects K7 Antivirus Premium prior to 15.1.0.53. A local user with a LOW integrity process can abuse the K7Sentry device by sending a specific IOCTL to access the raw hard disk, due to insufficient input authentication. This results in potential partial confidentiality exposure of ...
CVE-2018-5081
CVE-2018-5081 affects K7 AntiVirus 15.1.0306 via the driver file K7FWHlpr.sys . The vulnerability arises from not validating input values sent to IOCTL 0x830020F0, enabling a local user to trigger a denial of service (BSOD) and potentially other impacts. All documented details reference the same ...
CVE-2018-5088
CVE-2018-5088 affects K7 AntiVirus 15.1.0306, where the driver file K7FWHlpr.sys mishandles input from IOCTL 0x8300211C, enabling local users to trigger a denial of service (BSOD) and potentially other unspecified impact. The vulnerability stems from input value validation failure in the IOCTL ha...
CVE-2012-1460
Technical details are not publicly available in the provided documents; monitor for updates.
CVE-2017-16554
CVE-2017-16554 affects K7 Antivirus Premium prior to version 15.1.0.53. The vulnerability allows a local attacker to write to arbitrary memory locations via a specific set of IOCTL calls, resulting in privilege escalation. Affected component: K7 Antivirus Premium (local kernel/driver interaction ...
CVE-2017-17464
CVE-2017-17464 affects K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309. The vulnerability is a NULL pointer dereference triggered by a 0x95002570 DeviceIoControl request on the kernel-mode driver, indicating a potential denial-of-service condition. Affected component is the K7Sentry.sys driver w...
CVE-2017-17701
CVE-2017-17701 affects K7 Antivirus, specifically the kernel-mode driver K7Sentry.sys version 15.1.0.59. The vulnerability is a NULL pointer dereference exposed via a DeviceIoControl request (IOCTL 0x950025c8), as documented in CNVD-2018-01083 and corroborated by NVD/NVD-related sources. CNVD des...
CVE-2018-5087
CVE-2018-5087 affects K7 AntiVirus 15.1.0306 via the driver file K7FWHlpr.sys . The vulnerability arises from not validating input values from IOCTL 0x83002100, enabling a local user to cause a denial of service (BSOD) and potentially other impacts. Public documentation consistently describes a l...
CVE-2008-5533
CVE-2008-5533 describes a bypass of malware detection in K7 AntiVirus 7.10.541 (and possibly 7.10.454) when Internet Explorer 6/7 is used, by placing an MZ header at the start of an HTML document and renaming the file with no extension, or .txt, or .jpg. Related documentation for CVE-2006-5745 sh...
CVE-2017-16551
CVE-2017-16551 affects K7 Antivirus Premium prior to version 15.1.0.53. The issue enables local privilege escalation by a user sending a specific IOCTL after manipulating memory in a particular way. The vulnerability is described as a local privilege escalation with memory/state prerequisites, an...
CVE-2017-16552
K7 Antivirus Premium is affected by a local privilege escalation vulnerability in versions prior to 15.1.0.53. The issue arises from a specific set of IOCTL calls that allow a local attacker to write to arbitrary memory locations, resulting in privilege gains. Public documentation in the connecte...
CVE-2017-17699
CVE-2017-17699 affects K7 Antivirus, specifically the K7Sentry.sys driver version 15.1.0.59. The vulnerability is a NULL pointer dereference in the kernel-mode driver when handling a 0x950025ac DeviceIoControl request, as described in multiple sources. This is associated with the K7Sentry.sys com...
CVE-2012-1426
The CVE-2012-1426 entry describes a vulnerability in the TAR file parser used by Quick Heal (Cat QuickHeal) 11.00 and several antivirus products (Command Antivirus 5.2.11.5, F-Prot 4.6.2.117, K7 AntiVirus 9.77.3565, Norman 6.06.12, Rising 22.83.00.03) where a POSIX TAR file containing an initial ...
CVE-2017-16553
CVE-2017-16553 affects K7 Antivirus Premium. The vulnerability allows a local attacker to gain privileges by sending a specific IOCTL after configuring memory, impacting versions prior to 15.1.0.53. The issue is tied to local privilege escalation via IOCTL handling in the product and is documente...
CVE-2017-16556
CVE-2017-16556 affects K7 Antivirus Premium (versions before 15.1.0.53). The vulnerability is described as a local input handling flaw that allows a local attacker to write to arbitrary memory locations. The NVD entry lists a local attack vector with low attack complexity and a base score indicat...
CVE-2018-5218
CVE-2018-5218 affects K7 Antivirus 15.1.0306 due to improper input validation in the driver file K7Sentry.sys exposed via IOCTL 0x950025b0. Local users can trigger denial of service (BSOD) and potentially other impact. Documents consistently describe the driver IOCTL input handling issue but do n...
CVE-2018-5220
CVE-2018-5220 affects K7 Antivirus 15.1.0306. The vulnerability resides in the driver file K7Sentry.sys , where input validation for IOCTL 0x95002610 is insufficient. This can allow a local attacker to cause a denial of service (BSOD) and potentially other impacts. Connected documents corroborate...
CVE-2018-5079
In K7 AntiVirus 15.1.0306, the driver K7FWHlpr.sys is vulnerable due to not validating input values from IOCTL 0x83002130. This local problem can trigger a denial of service (BSOD) and possibly other unspecified impact. The connected documents confirm the affected component and the IOCTL-based in...
CVE-2018-5084
CVE-2018-5084 affects K7 AntiVirus 15.1.0306 via the driver K7FWHlpr.sys. The root cause is input validation failure for IOCTL 0x8300212C, enabling local users to trigger a denial of service (BSOD) and potentially other impacts. Documentation mentions related IOCTLs (e.g., 0x8300215B in CNVD), bu...
CVE-2018-5086
CVE-2018-5086 affects K7 AntiVirus 15.1.0306 via the driver file K7FWHlpr.sys . A local attacker can trigger a denial of service (BSOD) or other impact by sending unvalidated input values to IOCTLs 0x8300215F (and variants noted in CNVD entries). Root cause is input validation failure in the driv...
CVE-2018-5085
CVE-2018-5085 affects K7 AntiVirus 15.1.0306 via the driver K7FWHlpr.sys. The issue arises from not validating input values sent to IOCTL 0x83002124, enabling a local user to cause a denial of service (BSOD) and potentially other impacts. Descriptions across sources consistently state a local-exe...
CVE-2017-17700
K7 Antivirus driver vulnerability CVE-2017-17700 affects K7Sentry.sys 15.1.0.59. A NULL pointer dereference occurs in the kernel driver (K7Sentry.sys) when handling a 0x950025a4 DeviceIoControl request, leading to denial of service. Public records in CNVD-2018-01082 describe this DoS vector; othe...
CVE-2018-5080
CVE-2018-5080 affects K7 AntiVirus 15.1.0306, where the driver file K7FWHlpr.sys does not validate input values from IOCTL 0x830020FC, enabling a local user to cause a denial of service (BSOD) and potentially other impact. The vulnerability originates in input validation of the IOCTL path, leadin...
CVE-2018-5083
CVE-2018-5083 affects K7 AntiVirus 15.1.0306, where the driver file K7FWHlpr.sys fails to validate input values from IOCTL 0x8300215B. This local-privilege context can allow a local user to cause a denial of service (BSOD) or potentially other unspecified impact. The exploitation details are not ...
CVE-2018-5219
CVE-2018-5219 affects K7 Antivirus 15.1.0306 via its driver K7FWHlpr.sys. The flaw arises from not validating input values sent to IOCTL 0x83002168, enabling a local attacker to cause a denial of service (BSOD) and potentially other unspecified impact. Documents consistently describe the vulnerab...