CVSS: 6.0EPSS: 0%CPEs: 1EXPL: 0CVE-2021-25271
https://notcve.org/view.php?id=CVE-2021-25271
07 Oct 2021 — A local attacker could read or write arbitrary files with administrator privileges in HitmanPro before version Build 318. Un atacante local podría leer o escribir archivos arbitrarios con privilegios de administrador en HitmanPro versiones anteriores a Build 318 • https://www.sophos.com/en-us/security-advisories/sophos-sa-20211007-hmp-lpe •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2021-25270
https://notcve.org/view.php?id=CVE-2021-25270
07 Oct 2021 — A local attacker could execute arbitrary code with administrator privileges in HitmanPro.Alert before version Build 901. Un atacante local podría ejecutar código arbitrario con privilegios de administrador en HitmanPro.Alert versiones anteriores a Build 901 • https://www.sophos.com/en-us/security-advisories/sophos-sa-20211007-hmpa-lpe •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-9540
https://notcve.org/view.php?id=CVE-2020-9540
01 Mar 2020 — Sophos HitmanPro.Alert before build 861 allows local elevation of privilege. Sophos HitmanPro.Alert antes del build 861, permite una escalada de privilegios local. • https://www.hitmanpro.com/en-us/whatsnewalert.aspx •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2018-3970
https://notcve.org/view.php?id=CVE-2018-3970
25 Oct 2018 — An exploitable memory disclosure vulnerability exists in the 0x222000 IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744. A specially crafted IRP request can cause the driver to return uninitialized memory, resulting in kernel memory disclosure. An attacker can send an IRP request to trigger this vulnerability. Existe una vulnerabilidad explotable de divulgación de memoria en la funcionalidad de manejo de llamadas IOCTL 0x222000 de Sophos HitmanPro.Alert 3.7.6.744. Una petición IRP especialment... • http://www.securityfocus.com/bid/105743 • CWE-908: Use of Uninitialized Resource •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 1CVE-2018-3971
https://notcve.org/view.php?id=CVE-2018-3971
25 Oct 2018 — An exploitable arbitrary write vulnerability exists in the 0x2222CC IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744. A specially crafted IRP request can cause the driver to write data under controlled by an attacker address, resulting in memory corruption. An attacker can send IRP request to trigger this vulnerability. Existe una vulnerabilidad explotable de escritura arbitraria en la funcionalidad de manejo de llamadas IOCTL 0x2222CC de Sophos HitmanPro.Alert 3.7.6.744. Una petición IRP esp... • http://www.securityfocus.com/bid/105743 • CWE-123: Write-what-where Condition •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2017-7441
https://notcve.org/view.php?id=CVE-2017-7441
13 Sep 2017 — In Sophos SurfRight HitmanPro before 3.7.20 Build 286 (included in the HitmanPro.Alert solution and Sophos Clean), a crafted IOCTL with code 0x22E1C0 might lead to kernel data leaks. Because the leak occurs at the driver level, an attacker can use this vulnerability to leak some critical information about the machine such as nt!ExpPoolQuotaCookie. En Sophos SurfRight HitmanPro en versiones anteriores a 3.7.20 Build 286 (incluido en la solución HitmanPro.Alert y Sophos Clean), un IOCTL manipulado con código ... • https://trackwatch.com/kernel-pool-overflow-exploitation-in-real-world-windows-10 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2017-6007
https://notcve.org/view.php?id=CVE-2017-6007
13 Sep 2017 — A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 (included in the HitmanPro.Alert solution and Sophos Clean) allows local users to crash the OS via a malformed IOCTL call. Un desbordamiento de espacio de memoria del kernel en el controlador hitmanpro37.sys en Sophos SurfRight HitmanPro en versiones anteriores a la 3.7.20 Build 286 (incluido en la solución HitmanPro.Alert y Sophos Clean) permite que usuarios remotos provoquen el cierre inesperado del ... • https://trackwatch.com/kernel-pool-overflow-exploitation-in-real-world-windows-7 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 5CVE-2017-6008 – HitmanPro 3.7.15 Build 281 - Kernel Pool Overflow
https://notcve.org/view.php?id=CVE-2017-6008
13 Sep 2017 — A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 (included in the HitmanPro.Alert solution and Sophos Clean) allows local users to escalate privileges via a malformed IOCTL call. Un desbordamiento de espacio de memoria del kernel en el controlador hitmanpro37.sys en Sophos SurfRight HitmanPro en versiones anteriores a la 3.7.20 Build 286 (incluido en la solución HitmanPro.Alert y Sophos Clean) permite que usuarios remotos escalen privilegios mediante... • https://packetstorm.news/files/id/144769 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •