CVE-2018-18026

IMFCameraProtect.sys in IObit Malware Fighter 6.2 (and possibly lower versions) is vulnerable to a stack-based buffer overflow. The attacker can use DeviceIoControl to pass a user specified size which can be used to overwrite return addresses. This can lead to a denial of service or code execution attack.

MISC: https://downwithup.github.io/CVEPosts.html
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18026

11 years
254 countries
606k users
4056k calculations