exploitDog

CVE-2010-2031

Опубликовано: 24 мая 2010

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

KAVSafe.sys 2010.4.14.609 and earlier, as used in Kingsoft Webshield 3.5.1.2 and earlier, allows local users to overwrite arbitrary kernel memory via a crafted request to IOCTL 0x830020d4 on the KAVSafe device.

Ссылки

http://secunia.com/advisories/39916
Vendor Advisory
http://www.exploit-db.com/exploits/12710
Exploit
http://www.securityfocus.com/bid/40342
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/58780
http://secunia.com/advisories/39916
Vendor Advisory
http://www.exploit-db.com/exploits/12710
Exploit
http://www.securityfocus.com/bid/40342
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/58780

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:kingsoft:webshield:*:*:*:*:*:*:*:*

Версия до 3.5.1.2 (включая)

EPSS

Процентиль: 32%

0.00124

Низкий

7.2 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-jf64-vfp6-7x6v

github

больше 3 лет назад

KAVSafe.sys 2010.4.14.609 and earlier, as used in Kingsoft Webshield 3.5.1.2 and earlier, allows local users to overwrite arbitrary kernel memory via a crafted request to IOCTL 0x830020d4 on the KAVSafe device.

EPSS

Процентиль: 32%

0.00124

Низкий

7.2 High

CVSS2

Дефекты

CWE-119