CVE-2018-16723

Name of the Vulnerable Software and Affected Versions: Jingyun Antivirus version 2.4.2.39

Description: The issue allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x12364020 in the driver file ZySandbox.sys.

Recommendations: For Jingyun Antivirus version 2.4.2.39, consider disabling the ZySandbox.sys driver file as a temporary workaround to minimize the risk of exploitation. Restrict access to IOCtl 0x12364020 to prevent local users from causing a denial of service or other potential impacts. At the moment, there is no information about a newer version that contains a fix for this issue.