CVE-2018-5957

Name of the Vulnerable Software and Affected Versions: Zillya! Antivirus version 3.0.2230.0

Description: The issue is related to the driver file zef.sys in Zillya! Antivirus, which does not validate input values from IOCtl 0x9C40242C. This can allow local users to cause a denial of service (BSOD) or possibly have other unspecified impacts.

Recommendations: For Zillya! Antivirus version 3.0.2230.0, consider disabling the zef.sys driver file as a temporary workaround until a patch is available. Restrict access to IOCtl 0x9C40242C to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.