CVE-2018-15738

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x8000205F.
References
Link Resource
https://www.greyhathacker.net Third Party Advisory
https://www.greyhathacker.net/?p=1025 Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:stopzilla:antimalware:6.5.2.59:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-07-09 13:15

Updated : 2024-02-04 20:20


NVD link : CVE-2018-15738

Mitre link : CVE-2018-15738

CVE.ORG link : CVE-2018-15738


JSON object : View

Products Affected

stopzilla

  • antimalware
CWE
CWE-20

Improper Input Validation