PT-2018-17109 · Softcontrol/Safensoft · Enterprise Suite+2
Published
2018-06-12
·
Updated
2018-08-14
·
CVE-2018-5718
CVSS v3.1
7.1
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
SoftControl/SafenSoft SysWatch versions prior to 4.4.1
SoftControl/SafenSoft TPSecure versions prior to 4.4.1
SoftControl/SafenSoft Enterprise Suite versions prior to 4.4.1
Description:
The issue is related to improper restriction of write operations within the bounds of a memory buffer in the snscore.sys component. This can allow local users to cause a denial of service, resulting in a Blue Screen of Death (BSOD), or modify kernel-mode memory by loading a forged DLL into a user-mode process.
Recommendations:
For SoftControl/SafenSoft SysWatch versions prior to 4.4.1, update to version 4.4.1 or later.
For SoftControl/SafenSoft TPSecure versions prior to 4.4.1, update to version 4.4.1 or later.
For SoftControl/SafenSoft Enterprise Suite versions prior to 4.4.1, update to version 4.4.1 or later.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Enterprise Suite
Syswatch
Tpsecure