Vulnerabilities > K7Computing
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-12-15 | CVE-2017-17701 | NULL Pointer Dereference vulnerability in K7Computing Antivirus 15.1.0309 K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x950025c8 DeviceIoControl request. | 7.5 |
2017-12-15 | CVE-2017-17700 | NULL Pointer Dereference vulnerability in K7Computing Antivirus 15.1.0309 K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x950025a4 DeviceIoControl request. | 7.5 |
2017-12-15 | CVE-2017-17699 | NULL Pointer Dereference vulnerability in K7Computing Antivirus 15.1.0309 K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x950025ac DeviceIoControl request. | 7.5 |
2017-12-08 | CVE-2017-17465 | NULL Pointer Dereference vulnerability in K7Computing Antivirus 15.1.0309 K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x95002574 DeviceIoControl request. | 7.5 |
2017-12-08 | CVE-2017-17464 | NULL Pointer Dereference vulnerability in K7Computing Antivirus 15.1.0309 K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x95002570 DeviceIoControl request. | 7.5 |
2015-02-06 | CVE-2014-9643 | Permissions, Privileges, and Access Controls vulnerability in K7Computing products K7Sentry.sys in K7 Computing Ultimate Security, Anti-Virus Plus, and Total Security before 14.2.0.253 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x95002570, 0x95002574, 0x95002580, 0x950025a8, 0x950025ac, or 0x950025c8 IOCTL call. | 7.2 |
2014-12-12 | CVE-2014-8956 | Buffer Errors vulnerability in K7Computing K7Av Sentry Device Driver 12.8.0.118 Stack-based buffer overflow in the K7Sentry.sys kernel mode driver (aka K7AV Sentry Device Driver) before 12.8.0.119, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via unspecified vectors. | 7.2 |
2014-12-12 | CVE-2014-8608 | NULL Pointer Dereference Denial of Service vulnerability in K7Computing K7Av Sentry Device Driver 12.8.0.118 The K7Sentry.sys kernel mode driver (aka K7AV Sentry Device Driver) before 12.8.0.119, as used in multiple K7 Computing products, allows local users to cause a denial of service (NULL pointer dereference) as demonstrated by a filename containing "crashme$$". | 4.9 |
2014-12-12 | CVE-2014-7136 | Buffer Errors vulnerability in K7Computing K7Firewall Packet Driver 14.0.1.15 Heap-based buffer overflow in the K7FWFilt.sys kernel mode driver (aka K7Firewall Packet Driver) before 14.0.1.16, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via a crafted parameter in a DeviceIoControl API call. | 7.2 |
2012-03-21 | CVE-2012-1461 | Permissions, Privileges, and Access Controls vulnerability in multiple products The Gzip file parser in AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, F-Secure Anti-Virus 9.0.16160.0, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, Rising Antivirus 22.83.00.03, Sophos Anti-Virus 4.61.0, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, and VBA32 3.12.14.2 allows remote attackers to bypass malware detection via a .tar.gz file with multiple compressed streams. | 4.3 |