PT-2018-17097 · Iolo · Iolo System Shield Antivirus/Antispyware

Parvezghh

Published

2018-01-31

Updated

2018-02-15

CVE-2018-5701

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Iolo System Shield AntiVirus and AntiSpyware version 5.0.0.136

Description: The issue arises from the amp.sys driver file in Iolo System Shield AntiVirus and AntiSpyware, which contains an Arbitrary Write vulnerability. This vulnerability is due to the failure to validate input values from the IOCtl 0x00226003.

Recommendations: For version 5.0.0.136, consider disabling the amp.sys driver file as a temporary workaround until a patch is available. Restrict access to the IOCtl 0x00226003 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2018-5701

Affected Products

Iolo System Shield Antivirus/Antispyware

PT-2018-17097 · Iolo · Iolo System Shield Antivirus/Antispyware

CVE-2018-5701

Weakness Enumeration

Related Identifiers

Affected Products

References · 6