CVE-2014-3752 – G Data TotalProtection 2014 Code Execution

https://notcve.org/view.php?id=CVE-2014-3752

25 Jun 2014 — The MiniIcpt.sys driver in G Data TotalProtection 2014 24.0.2.1 and earlier allows local users with administrator rights to execute arbitrary code with SYSTEM privileges via a crafted 0x83170180 call. El controlador Minilcpt.sys en G Data TotalProtection 2014 en versiones 24.0.2.1 y anteriores permite que los usuarios locales con derechos de administrador ejecuten código arbitrario con privilegios SYSTEM mediante una llamada 0x83170180. G Data TotalProtection 2014 version 24.0.2.1 suffers from an arbitrary ... • http://packetstormsecurity.com/files/127227/G-Data-TotalProtection-2014-Code-Execution.html • CWE-264: Permissions, Privileges, and Access Controls •