CVE-2018-5701

Sažetak

In Iolo System Shield AntiVirus and AntiSpyware 5.0.0.136, the amp.sys driver file contains an Arbitrary Write vulnerability due to not validating input values from IOCtl 0x00226003.

Reference

http://packetstormsecurity.com/files/146165/System-Shield-5.0.0.136-Privilege-Escalation.html
https://www.exploit-db.com/exploits/43929/
https://www.greyhathacker.net/?p=1006

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

15-02-2018 - 16:35

Objavljeno

31-01-2018 - 18:29