- Description
- Buffer overflow in Atepmon.sys in ISecSoft Anti-Trojan Elite 4.2.1 and earlier, and possibly 4.2.2, allows local users to cause a denial of service (crash) and possibly execute arbitrary code via long inputs to the 0x00222494 IOCTL.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
- nvd@nist.gov
- CWE-119
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:isecsoft:anti-trojan_elite:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A87EC17-F727-4E3A-A2B7-D844FA98B7D5",
"versionEndIncluding": "4.2.2"
},
{
"criteria": "cpe:2.3:a:isecsoft:anti-trojan_elite:4.1.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8EA0B4FA-A85F-4A8D-9C11-AD0864EB1031"
},
{
"criteria": "cpe:2.3:a:isecsoft:anti-trojan_elite:4.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "19A3EE89-BD4F-4654-9252-C6B0073D35D9"
},
{
"criteria": "cpe:2.3:a:isecsoft:anti-trojan_elite:4.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "74C7A54A-0272-4FA5-80C6-2CC8BEF87F40"
}
],
"operator": "OR"
}
]
}
]