M. Akil Gündoğan

**Name of the Vulnerable Software and Affected Versions** Zillya Total Security version 3.0.2367.0 **Description** Zillya Total Security allows low-privileged users to copy files to unauthorized system locations through the quarantine module, leading to potential privilege escalation. Attackers can use symbolic link techniques to restore quarantined files to restricted directories, potentially enabling system-level access through DLL hijacking. The quarantine module is the component involved in this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GOM Player version 2.3.90.5360 **Description** GOM Player has a remote code execution issue in its Internet Explorer component. An attacker can execute arbitrary code through DNS spoofing. The attack involves redirecting a victim using a malicious URL shortcut and a WebDAV technique, which can lead to running a reverse shell with SMB server interaction. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Emsisoft Anti-Malware versions prior to 2024.12 **Description** A vulnerability in the scanning module of Emsisoft Anti-Malware allows attackers on a remote server to obtain Net-NTLMv2 hash information by using a specially crafted A2S (Emsisoft Custom Scan) extension file. Net-NTLMv2 is a network authentication protocol used in Windows environments. **Recommendations** Update Emsisoft Anti-Malware to version 2024.12 or later.

**Name of the Vulnerable Software and Affected Versions** K7 Ultimate Security versions prior to 17.0.2019 **Description** K7RKScan.sys in K7 Ultimate Security before version 17.0.2019 allows local users to cause a denial of service (BSOD) due to a NULL pointer dereference. The issue involves a desreferencing of a NULL pointer. **Recommendations** Versions prior to 17.0.2019 should be updated.

**Name of the Vulnerable Software and Affected Versions** SUPERAntiSpyware Professional X versions 10.0.1262 through 10.0.1264 **Description** The issue allows unprivileged attackers to escalate privileges via a restore of a crafted DLL file into the C:Program FilesSUPERAntiSpyware folder. **Recommendations** For versions 10.0.1262 and 10.0.1264, consider restricting access to the C:Program FilesSUPERAntiSpyware folder to prevent the restoration of crafted DLL files until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Sysinternals Process Monitor for Windows (affected versions not specified) **Description** The issue is related to incorrect resource release in the Sysinternals suite of system utilities for Windows operating systems. Exploitation of this issue may allow an attacker to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.