CVE-2017-17113
published 2017-12-04CVE-2017-17113: ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 has a NULL pointer dereference via a 0x830000c4 DeviceIoControl request.
PriorityP418medium5.5CVSS 3.0
AVLACLPRLUINSUCNINAH
EPSS
0.36%
27.9th percentile
ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 has a NULL pointer dereference via a 0x830000c4 DeviceIoControl request.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ikarussecurity | anti.virus | < 2.16.18 | 2.16.18 |
| ikarussecurity | anti.virus | — | — |
CVSS provenance
nvdv3.05.5MEDIUMCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:N/I:N/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5cpp-6f34-6ff5: ntguard_x64
ghsa_unreviewed·2022-05-17
CVE-2017-17113 [MEDIUM] CWE-476 GHSA-5cpp-6f34-6ff5: ntguard_x64
ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 has a NULL pointer dereference via a 0x830000c4 DeviceIoControl request.
GHSA
GHSA-xcqj-h6vv-4cp9: In IKARUS anti
ghsa_unreviewed·2022-05-14·CVSS 5.5
CVE-2017-14968 [MEDIUM] CWE-20 GHSA-xcqj-h6vv-4cp9: In IKARUS anti
In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x830000c4, a related issue to CVE-2017-17113.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2017-12-04
Published