Back to search
CVE-2018-6319
Published: Feb 2, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
In Sophos Tester Tool 3.2.0.7 Beta, the driver accepts a special DeviceIoControl code that doesn't check its argument. This argument is a memory address: if a caller passes a NULL pointer or a random invalid address, the driver will cause a Blue Screen of Death. If a program or malware does this at boot time, it can cause a persistent denial of service on the machine.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://29wspy.ru/exploits/CVE-2018-6319.pdf
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now