Vulnerabilities > CVE-2023-1492 - Unspecified vulnerability in Maxpcsecure Anti Virus Plus 19.0.2.1

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

maxpcsecure

NVD

Published: 2023-03-18

Updated: 2024-11-21

Summary

A vulnerability was found in Max Secure Anti Virus Plus 19.0.2.1. It has been declared as problematic. This vulnerability affects the function 0x220019 in the library MaxProc64.sys of the component IoControlCode Handler. The manipulation of the argument SystemBuffer leads to denial of service. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. VDB-223378 is the identifier assigned to this vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Maxpcsecure Maxpcsecure Anti Virus Plus 19.0.2.1	1

References

https://drive.google.com/file/d/1G_Szy4kCrZU-whGbVcxpdE1yKf5Vxqq3/view
https://drive.google.com/file/d/1G_Szy4kCrZU-whGbVcxpdE1yKf5Vxqq3/view
https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-1492
https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-1492
https://vuldb.com/?ctiid.223378
https://vuldb.com/?ctiid.223378
https://vuldb.com/?id.223378
https://vuldb.com/?id.223378