N/A

Local attackers can trigger a stack-based buffer overflow on vulnerable installations of Antiy-AVL ATool security management v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of IOCTL 0x80002000 by the IRPFile.sys Antiy-AVL ATool kernel driver. The bug is caused by failure to properly validate the length of the user-supplied data, which results in a kernel stack buffer overflow. An attacker can leverage this vulnerability to execute arbitrary code in the context of the kernel, which could lead to privilege escalation and a failed exploit could lead to denial of service.

N/A

N/A

Antiy-AVL IATool security management 缓冲区错误漏洞

Antiy-AVL IATool security management是中国安天（Antiy）实验室的一款具有反病毒功能的安全管理工具。 Antiy-AVL IATool security management 1.0.0.22版本中存在基于栈的缓冲区溢出漏洞，该漏洞源于程序未能妥当地验证用户提交的数据的长度。本地攻击者可利用该漏洞在内核的上下文中执行任意代码，进而提升权限或造成拒绝服务。

N/A

N/A