Vulnerabilities > Malwarebytes
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-01-08 | CVE-2018-5272 | Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183 In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e004. | 7.8 |
2018-01-08 | CVE-2018-5271 | Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183 In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e008. | 7.8 |
2018-01-08 | CVE-2018-5270 | Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183 In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e010. | 7.8 |
2015-01-13 | CVE-2014-100039 | Improper Input Validation vulnerability in Malwarebytes Anti-Exploit 1.04.1.1012 mbae.sys in Malwarebytes Anti-Exploit before 1.05.1.2014 allows local users to cause a denial of service (crash) via a crafted size in an unspecified IOCTL call, which triggers an out-of-bounds read. | 2.1 |
2014-12-16 | CVE-2014-4936 | Insufficient Verification of Data Authenticity vulnerability in Malwarebytes products The upgrade functionality in Malwarebytes Anti-Malware (MBAM) consumer before 2.0.3 and Malwarebytes Anti-Exploit (MBAE) consumer 1.04.1.1012 and earlier allow man-in-the-middle attackers to execute arbitrary code by spoofing the update server and uploading an executable. | 9.3 |