Описание
The MiniIcpt.sys driver in G Data TotalProtection 2014 24.0.2.1 and earlier allows local users with administrator rights to execute arbitrary code with SYSTEM privileges via a crafted 0x83170180 call.
The MiniIcpt.sys driver in G Data TotalProtection 2014 24.0.2.1 and earlier allows local users with administrator rights to execute arbitrary code with SYSTEM privileges via a crafted 0x83170180 call.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-3752
- https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-3752
- http://packetstormsecurity.com/files/127227/G-Data-TotalProtection-2014-Code-Execution.html
- http://seclists.org/fulldisclosure/2014/Jun/125
- http://www.securityfocus.com/archive/1/532559/100/0/threaded
Связанные уязвимости
CVSS3: 6.7
nvd
около 8 лет назад
The MiniIcpt.sys driver in G Data TotalProtection 2014 24.0.2.1 and earlier allows local users with administrator rights to execute arbitrary code with SYSTEM privileges via a crafted 0x83170180 call.