PT-2019-9165 · Is3 · Stopzilla Antimalware
Parvezghh
·
Published
2019-06-21
·
Updated
2019-06-21
·
CVE-2018-15735
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
STOPzilla AntiMalware version 6.5.2.59
Description
An issue was discovered in the driver file szkg64.sys, which contains an Arbitrary Write issue due to not validating the output buffer address value from IOCtl 0x8000206F.
Recommendations
For STOPzilla AntiMalware version 6.5.2.59, consider disabling the szkg64.sys driver file as a temporary workaround until a patch is available.
Exploit
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Stopzilla Antimalware