// For flags

CVE-2014-9642

BullGuard (Multiple Products) - Arbitrary Write Privilege Escalation

Severity Score

7.2
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

4
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

bdagent.sys in BullGuard Antivirus, Internet Security, Premium Protection, and Online Backup before 15.0.288 allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted 0x0022405c IOCTL call.

bdagent.sys en BullGuard Antivirus, Internet Security, Premium Protection, y Online Backup anterior a 15.0.288 permite a usuarios locales escribir datos a localizaciones de memoria arbitrarias, y como consecuencia ganar privilegios, a través de una llamada IOCTL 0x0022405c manipulada.

Multiple products from BullGuard suffer from an arbitrary write privilege escalation vulnerability.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2015-01-22 CVE Reserved
  • 2015-02-04 First Exploit
  • 2015-02-05 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-264: Permissions, Privileges, and Access Controls
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Bullguard
Search vendor "Bullguard"
Bdagent.sys
Search vendor "Bullguard" for product "Bdagent.sys"
<= 1.0.0.6
Search vendor "Bullguard" for product "Bdagent.sys" and version " <= 1.0.0.6"
-
Affected
in Bullguard
Search vendor "Bullguard"
Internet Security
Search vendor "Bullguard" for product "Internet Security"
<= 14.1.287
Search vendor "Bullguard" for product "Internet Security" and version " <= 14.1.287"
-
Affected
Bullguard
Search vendor "Bullguard"
Bdagent.sys
Search vendor "Bullguard" for product "Bdagent.sys"
<= 1.0.0.6
Search vendor "Bullguard" for product "Bdagent.sys" and version " <= 1.0.0.6"
-
Affected
in Bullguard
Search vendor "Bullguard"
Online Backup
Search vendor "Bullguard" for product "Online Backup"
<= 14.1.287
Search vendor "Bullguard" for product "Online Backup" and version " <= 14.1.287"
-
Affected
Bullguard
Search vendor "Bullguard"
Bdagent.sys
Search vendor "Bullguard" for product "Bdagent.sys"
<= 1.0.0.6
Search vendor "Bullguard" for product "Bdagent.sys" and version " <= 1.0.0.6"
-
Affected
in Bullguard
Search vendor "Bullguard"
Premium Protection
Search vendor "Bullguard" for product "Premium Protection"
<= 14.1.287
Search vendor "Bullguard" for product "Premium Protection" and version " <= 14.1.287"
-
Affected