CVE-2018-18026

IMFCameraProtect.sys in IObit Malware Fighter 6.2 (and possibly lower versions) is vulnerable to a stack-based buffer overflow. The attacker can use DeviceIoControl to pass a user specified size which can be used to overwrite return addresses. This can lead to a denial of service or code execution attack.

MISC: https://downwithup.github.io/CVEPosts.html
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18026

14 years
257 countries
694k users
4579k calculations
Logo www.elsec.cz
Logo www.use-ip.co.uk
Logo www.systemy-stech.cz
Logo zoneway.cz
Logo www.eleksys.cz
Logo secutek.cz