Skip to main content
CVE-2018-6476 CRITICAL POC Act Now

In SUPERAntiSpyware Professional Trial 6.0.1254, the SASKUTIL.SYS driver allows privilege escalation to NT AUTHORITY\SYSTEM because of not validating input values from IOCtl 0x9C402114 or 0x9C402124. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Superantispyware
NVD GitHub
CVSS 3.0
9.8
EPSS
4.5%
CVE-2018-5701 CRITICAL POC THREAT Act Now

In Iolo System Shield AntiVirus and AntiSpyware 5.0.0.136, the amp.sys driver file contains an Arbitrary Write vulnerability due to not validating input values from IOCtl 0x00226003. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow System Shield
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
18.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy