Shodan
Vulnerabilities
Vulnerable Software
K7computing:  Security Vulnerabilities
CVE-2018-5088
In K7 AntiVirus 15.1.0306, the driver file (K7FWHlpr.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x8300211C.
CVSS Score
7.8
EPSS Score
0.0
Published
2018-01-03
CVE-2017-17699
K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x950025ac DeviceIoControl request.
CVSS Score
9.8
EPSS Score
0.004
Published
2017-12-15
CVE-2017-17700
K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x950025a4 DeviceIoControl request.
CVSS Score
9.8
EPSS Score
0.004
Published
2017-12-15
CVE-2017-17701
K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x950025c8 DeviceIoControl request.
CVSS Score
9.8
EPSS Score
0.004
Published
2017-12-15
CVE-2017-17464
K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x95002570 DeviceIoControl request.
CVSS Score
9.8
EPSS Score
0.004
Published
2017-12-08
CVE-2017-17465
K7Sentry.sys 15.1.0.59 in K7 Antivirus 15.1.0309 has a NULL pointer dereference via a 0x95002574 DeviceIoControl request.
CVSS Score
9.8
EPSS Score
0.004
Published
2017-12-08
CVE-2014-9643
K7Sentry.sys in K7 Computing Ultimate Security, Anti-Virus Plus, and Total Security before 14.2.0.253 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted 0x95002570, 0x95002574, 0x95002580, 0x950025a8, 0x950025ac, or 0x950025c8 IOCTL call.
CVSS Score
7.2
EPSS Score
0.009
Published
2015-02-06
CVE-2014-8956
Stack-based buffer overflow in the K7Sentry.sys kernel mode driver (aka K7AV Sentry Device Driver) before 12.8.0.119, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via unspecified vectors.
CVSS Score
7.2
EPSS Score
0.001
Published
2014-12-12
CVE-2014-8608
The K7Sentry.sys kernel mode driver (aka K7AV Sentry Device Driver) before 12.8.0.119, as used in multiple K7 Computing products, allows local users to cause a denial of service (NULL pointer dereference) as demonstrated by a filename containing "crashme$$".
CVSS Score
4.9
EPSS Score
0.001
Published
2014-12-12
CVE-2014-7136
Heap-based buffer overflow in the K7FWFilt.sys kernel mode driver (aka K7Firewall Packet Driver) before 14.0.1.16, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via a crafted parameter in a DeviceIoControl API call.
CVSS Score
7.2
EPSS Score
0.001
Published
2014-12-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved