CVE-2024-1140 – Twister Antivirus v8.17 - Out-of-bounds Read
https://notcve.org/view.php?id=CVE-2024-1140
Twister Antivirus v8.17 is vulnerable to an Out-of-bounds Read vulnerability by triggering the 0x801120B8 IOCTL code of the filmfd.sys driver. Twister Antivirus v8.17 es afectado por una vulnerabilidad de lectura fuera de los límites al activar el código IOCTL 0x801120B8 del controlador filmfd.sys. • http://www.filseclab.com/en-us/products/twister.htm https://fluidattacks.com/advisories/fitzgerald • CWE-125: Out-of-bounds Read •
CVE-2024-1096 – Twister Antivirus v8.17 - Denial of Service
https://notcve.org/view.php?id=CVE-2024-1096
Twister Antivirus v8.17 is vulnerable to a Denial of Service vulnerability by triggering the 0x80112067, 0x801120CB 0x801120CC 0x80112044, 0x8011204B, 0x8011204F, 0x80112057, 0x8011205B, 0x8011205F, 0x80112063, 0x8011206F, 0x80112073, 0x80112077, 0x80112078, 0x8011207C and 0x80112080 IOCTL codes of the fildds.sys driver. Twister Antivirus v8.17 permite la elevación de privilegios en la computadora donde está instalado activando los códigos IOCTL 0x80112067, 0x801120CB y 0x801120CC del controlador fildds.sys. • http://www.filseclab.com/en-us/products/twister.htm https://fluidattacks.com/advisories/holiday • CWE-476: NULL Pointer Dereference •
CVE-2023-2874 – Twister Antivirus IoControlCode filppd.sys 0x804f2140 denial of service
https://notcve.org/view.php?id=CVE-2023-2874
A vulnerability, which was classified as problematic, has been found in Twister Antivirus 8. This issue affects the function 0x804f2158/0x804f2154/0x804f2150/0x804f215c/0x804f2160/0x80800040/0x804f214c/0x804f2148/0x804f2144/0x801120e4/0x804f213c/0x804f2140 in the library filppd.sys of the component IoControlCode Handler. The manipulation leads to denial of service. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. • https://drive.google.com/file/d/1hcj4tdRveydUv84J5IEQFmjF1XxUvxGy/view?usp=sharing https://github.com/zeze-zeze/WindowsKernelVuln/blob/master/CVE-2023-2874 https://vuldb.com/?ctiid.229853 https://vuldb.com/?id.229853 • CWE-404: Improper Resource Shutdown or Release •
CVE-2023-2873 – Twister Antivirus IoControlCode filppd.sys 0x80800043 memory corruption
https://notcve.org/view.php?id=CVE-2023-2873
A vulnerability classified as critical was found in Twister Antivirus 8. This vulnerability affects the function 0x804f2143/0x804f217f/0x804f214b/0x80800043 in the library filppd.sys of the component IoControlCode Handler. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. • https://drive.google.com/file/d/1ABRMxr6Ek02P_WAXjyYLGQ4sHYMVQTka/view?usp=sharing https://github.com/zeze-zeze/WindowsKernelVuln/blob/master/CVE-2023-2873 https://vuldb.com/?ctiid.229852 https://vuldb.com/?id.229852 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVE-2023-1008 – Twister Antivirus IoControlCode filmfd.sys 0x801120E4 denial of service
https://notcve.org/view.php?id=CVE-2023-1008
A vulnerability was found in Twister Antivirus 8.17. It has been rated as problematic. This issue affects the function 0x801120E4 in the library filmfd.sys of the component IoControlCode Handler. The manipulation leads to denial of service. An attack has to be approached locally. • https://drive.google.com/file/d/1fdQWJ1uvXELnXnDm2Jk81bA0fwwqQCpY/view?usp=sharing https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-1008 https://vuldb.com/?ctiid.221741 https://vuldb.com/?id.221741 • CWE-404: Improper Resource Shutdown or Release •