CVE-2014-9633

Опубликовано: 03 фев. 2015

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

The bdisk.sys driver in COMODO Backup before 4.4.1.23 allows remote attackers to gain privileges via a crafted device handle, which triggers a NULL pointer dereference.

Ссылки

http://forums.comodo.com/news-announcements-feedback-cb/comodo-backup-44123-released-t107293.0.html
http://packetstormsecurity.com/files/130094/Comodo-Backup-4.4.0.0-NULL-Pointer-Dereference.html
Exploit
http://www.exploit-db.com/exploits/35905
Exploit
http://forums.comodo.com/news-announcements-feedback-cb/comodo-backup-44123-released-t107293.0.html
http://packetstormsecurity.com/files/130094/Comodo-Backup-4.4.0.0-NULL-Pointer-Dereference.html
Exploit
http://www.exploit-db.com/exploits/35905
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:comodo:backup:*:*:*:*:*:*:*:*

Версия до 4.4.1 (включая)

EPSS

Процентиль: 89%

0.04829

Низкий

7.5 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-phmf-jhrc-97cf

github

больше 3 лет назад