Vulnerability Details CVE-2018-5701
In Iolo System Shield AntiVirus and AntiSpyware 5.0.0.136, the amp.sys driver file contains an Arbitrary Write vulnerability due to not validating input values from IOCtl 0x00226003.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.205
EPSS Ranking 95.2%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://packetstormsecurity.com/files/146165/System-Shield-5.0.0.136-Privilege-Escalation.html
- https://www.exploit-db.com/exploits/43929/
- https://www.greyhathacker.net/?p=1006
- http://packetstormsecurity.com/files/146165/System-Shield-5.0.0.136-Privilege-Escalation.html
- https://www.exploit-db.com/exploits/43929/
- https://www.greyhathacker.net/?p=1006
Products affected by CVE-2018-5701
-
cpe:2.3:a:iolo:system_shield:5.0.0.136