CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2016-4307
https://notcve.org/view.php?id=CVE-2016-4307
A denial of service vulnerability exists in the IOCTL handling functionality of Kaspersky Internet Security KL1 driver. A specially crafted IOCTL signal can cause an access violation in KL1 kernel driver resulting in local system denial of service. An attacker can run a program from user-mode to trigger this vulnerability. Existe una vulnerabilidad de denegación de servicio en la funcionalidad de manejo IOCTL del controlador Kaspersky Internet Security KL1. Una señal IOCTL especialmente manipulada puede provocar una violación de acceso en el controlador del kernel KL1 resultando en una denegación de servicio en el sistema local. • http://securitytracker.com/id/1036702 http://www.securitytracker.com/id/1036702 http://www.securitytracker.com/id/1036703 http://www.talosintelligence.com/reports/TALOS-2016-0169 • CWE-284: Improper Access Control •
CVSS: 9.8EPSS: 5%CPEs: 3EXPL: 2CVE-2017-5005
https://notcve.org/view.php?id=CVE-2017-5005
Stack-based buffer overflow in Quick Heal Internet Security 10.1.0.316 and earlier, Total Security 10.1.0.316 and earlier, and AntiVirus Pro 10.1.0.316 and earlier on OS X allows remote attackers to execute arbitrary code via a crafted LC_UNIXTHREAD.cmdsize field in a Mach-O file that is mishandled during a Security Scan (aka Custom Scan) operation. Desbordamiento de búfer basado en pila en Quick Heal Internet Security 10.1.0.316 y versiones anteriores, Total Security 10.1.0.316 y versiones anteriores y AntiVirus Pro 10.1.0.316 y versiones anteriores en OS X permite a atacantes remotos ejecutar código arbitrario a través de un campo LC_UNIXTHREAD.cmdsize manipulado en un archivo Mach-O que no es manejado correctamente durante una operación Security Scan (también conocido como Custom Scan). • http://www.securityfocus.com/bid/95194 http://www.securitytracker.com/id/1037547 https://github.com/payatu/QuickHeal https://www.youtube.com/watch?v=h9LOsv4XE00 • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2016-1225
https://notcve.org/view.php?id=CVE-2016-1225
Trend Micro Internet Security 8 and 10 allows remote attackers to read arbitrary files via unspecified vectors. Trend Micro Internet Security 8 y 10 permite a atacantes remotos leer archivos arbitrarios a través de vectores no especificados. • http://jvn.jp/en/jp/JVN48789425/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2016-000073 http://www.securitytracker.com/id/1036137 https://esupport.trendmicro.com/support/vb/solution/ja-jp/1113880.aspx • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2016-1226
https://notcve.org/view.php?id=CVE-2016-1226
Cross-site scripting (XSS) vulnerability in Trend Micro Internet Security 8 and 10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en Trend Micro Internet Security 8 y 10 permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de vectores no especificados. • http://jvn.jp/en/jp/JVN48789425/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2016-000088 http://www.securitytracker.com/id/1036137 https://esupport.trendmicro.com/support/vb/solution/ja-jp/1113880.aspx • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.5EPSS: 0%CPEs: 42EXPL: 0CVE-2016-4025
https://notcve.org/view.php?id=CVE-2016-4025
Avast Internet Security v11.x.x, Pro Antivirus v11.x.x, Premier v11.x.x, Free Antivirus v11.x.x, Business Security v11.x.x, Endpoint Protection v8.x.x, Endpoint Protection Plus v8.x.x, Endpoint Protection Suite v8.x.x, Endpoint Protection Suite Plus v8.x.x, File Server Security v8.x.x, and Email Server Security v8.x.x allow attackers to bypass the DeepScreen feature via a DeviceIoControl call. Avast Internet Security v11.x.x, Pro Antivirus v11.x.x, Premier v11.x.x, Free Antivirus v11.x.x, Business Security v11.x.x, Endpoint Protection v8.x.x, Endpoint Protection Plus v8.x.x, Endpoint Protection Suite v8.x.x, Endpoint Protection Suite Plus v8.x.x, File Server Security v8.x.x y Email Server Security v8.x.x permiten a atacantes eludir la funcionalidad DeepScreen a través de una llamada DeviceIoControll. • https://labs.nettitude.com/blog/escaping-avast-sandbox-using-single-ioctl-cve-2016-4025 • CWE-254: 7PK - Security Features •