PT-2018-16812 · K7 · K7 Antivirus
Published
2018-01-04
·
Updated
2018-01-11
·
CVE-2018-5220
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
K7 Antivirus version 15.1.0306
Description
The issue arises from the driver file K7Sentry.sys not validating input values from IOCtl 0x95002610, allowing local users to cause a denial of service (BSOD) or possibly have other unspecified impacts.
Recommendations
For K7 Antivirus version 15.1.0306, consider temporarily disabling the K7Sentry.sys driver file until a patch is available to prevent potential denial of service (BSOD) or other unspecified impacts.
Exploit
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
K7 Antivirus