CVE-2014-9642

bdagent.sys in BullGuard Antivirus, Internet Security, Premium Protection, and Online Backup before 15.0.288 allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted 0x0022405c IOCTL call.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 59%
VendorProductVersion
bullguardbdagent.sys
𝑥
≤ 1.0.0.6
bullguardinternet_security
𝑥
≤ 14.1.287
bullguardonline_backup
𝑥
≤ 14.1.287
bullguardpremium_protection
𝑥
≤ 14.1.287
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/130247/BullGuard-14.1.285.4-Privilege-Escalation.html
http://www.bullguard.com/about/release-notes.aspx
http://www.exploit-db.com/exploits/35994
http://www.greyhathacker.net/?p=818
http://www.osvdb.org/114478
http://packetstormsecurity.com/files/130247/BullGuard-14.1.285.4-Privilege-Escalation.html
http://www.bullguard.com/about/release-notes.aspx
http://www.exploit-db.com/exploits/35994
http://www.greyhathacker.net/?p=818
http://www.osvdb.org/114478