Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Incorrect access control in zam64.sys, zam32.sys in MalwareFox AntiMalware 2.74.0.150 allows a non-privileged process to open a handle to \.\ZemanaAntiMalware, register itself with the driver by sending IOCTL 0x80002010, allocate executable memory using a flaw in IOCTL 0x80002040, install a hook with IOCTL 0x80002044 and execute the executable memory using this hook with IOCTL 0x80002014 or 0x80002018, this exposes ring 0 code execution in the context of the driver allowing the non-privileged process to elevate privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MalwareFox Anti-Malware 安全漏洞
Vulnerability Description
MalwareFox Anti-Malware是美国MalwareFox公司的一个应用软件。一个检测恶意代码软件。 MalwareFox AntiMalware 2.74.0.150 存在安全漏洞,该漏洞允许在驱动程序的上下文中公开环0代码的执行,允许非特权进程提升特权。
CVSS Information
N/A
Vulnerability Type
N/A