Pagefault

**Name of the Vulnerable Software and Affected Versions** Bitdefender Internet Security 2018 **Description** This issue allows remote attackers to execute arbitrary code on vulnerable installations. It requires user interaction, such as visiting a malicious page or opening a malicious file. The flaw exists within cevakrnl.xmd due to the lack of proper validation of user-supplied data, resulting in an integer overflow before allocating a buffer. This can be leveraged to execute code under the context of SYSTEM. **Recommendations** For Bitdefender Internet Security 2018, consider restricting access to the cevakrnl.xmd module to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using potentially malicious files or links that could trigger the vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Bitdefender Internet Security 2018 **Description** This issue allows remote attackers to execute arbitrary code on vulnerable installations. User interaction is required, where the target must visit a malicious page or open a malicious file. The flaw exists within emulator 0x10A in cevakrnl.xmd due to the lack of proper validation of user-supplied data, resulting in an integer overflow before writing to memory. An attacker can leverage this to execute code under the context of SYSTEM. **Recommendations** For Bitdefender Internet Security 2018, consider disabling the emulator 0x10A in cevakrnl.xmd as a temporary workaround until a patch is available. Restrict access to potentially malicious pages or files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Bitdefender Internet Security 2018 **Description** This issue allows remote attackers to execute arbitrary code on vulnerable installations. It requires user interaction, such as visiting a malicious page or opening a malicious file. The flaw exists within emulator 0x102 in cevakrnl.xmd due to the lack of proper validation of user-supplied data, resulting in a write past the end of an allocated object. An attacker can leverage this to execute code under the context of SYSTEM. **Recommendations** For Bitdefender Internet Security 2018, consider disabling the emulator 0x102 in cevakrnl.xmd as a temporary workaround until a patch is available. Restrict access to potentially malicious pages or files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Bitdefender Internet Security version prior to build 7.72918 **Description** This issue allows remote attackers to execute arbitrary code on vulnerable installations. User interaction is required, where the target must visit a malicious page or open a malicious file. The flaw exists within `pdf.xmd` due to the lack of proper validation of user-supplied data, resulting in an integer overflow before allocating a buffer. An attacker can leverage this to execute code under the context of SYSTEM. **Recommendations** For Bitdefender Internet Security version prior to build 7.72918, update to a version after build 7.72918 to resolve the issue. As a temporary workaround, consider restricting access to `pdf.xmd` to minimize the risk of exploitation. Avoid opening malicious files or visiting suspicious links to reduce the risk of attack.