exploitDog

CVE-2018-15732

Опубликовано: 21 июн. 2019

Источник: nvd

CVSS3: 5.5

CVSS2: 2.1

EPSS Низкий

Описание

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x80002063.

Ссылки

https://www.greyhathacker.net
Exploit
Third Party Advisory
https://www.greyhathacker.net/?p=1025
Exploit
Third Party Advisory
https://www.greyhathacker.net
Exploit
Third Party Advisory
https://www.greyhathacker.net/?p=1025
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:stopzilla:antimalware:6.5.2.59:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00064

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-q4fx-7vmc-wfq5

github

больше 3 лет назад

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x80002063.

EPSS

Процентиль: 20%

0.00064

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-20