CVE-2018-6593

An issue was discovered in MalwareFox AntiMalware 2.74.0.150. Improper access control in zam32.sys and zam64.sys allows a non-privileged process to register itself with the driver by connecting to the filter communication port and then using IOCTL 0x8000204C to \\.\ZemanaAntiMalware to elevate privileges.
Configurations

Configuration 1 (hide)

cpe:2.3:a:malwarefox:antimalware:2.74.0.150:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-02-03 18:29

Updated : 2024-02-04 19:46


NVD link : CVE-2018-6593

Mitre link : CVE-2018-6593

CVE.ORG link : CVE-2018-6593


JSON object : View

Products Affected

malwarefox

  • antimalware
CWE
CWE-732

Incorrect Permission Assignment for Critical Resource