PT-2019-9163 · Is3 · Stopzilla Antimalware
Parvezghh
·
Published
2019-06-21
·
Updated
2019-06-21
·
CVE-2018-15733
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
STOPzilla AntiMalware version 6.5.2.59
Description
An issue was discovered due to a NULL Pointer Dereference in the driver file szkg64.sys. This occurs because the size of the output buffer value from IOCtl 0x80002028 is not validated.
Recommendations
For STOPzilla AntiMalware version 6.5.2.59, consider disabling the szkg64.sys driver file as a temporary workaround until a patch is available.
Exploit
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Stopzilla Antimalware