← back
CVE-2014-9642

CVE-2014-9642

EPSS 1.1%
bdagent.sys in BullGuard Antivirus, Internet Security, Premium Protection, and Online Backup before 15.0.288 allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted 0x0022405c IOCTL call.
Affected products
n/a · n/a
public PoCs found3
cve_referencepacketstormsecurity.com/files/130247/BullGuard-14.1.285.4-Privilege-Escalation.htmlunverifiedcve_referencewww.exploit-db.com/exploits/35994unverifiedexploitdbwww.exploit-db.com/exploits/35994unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/130247/BullGuard-14.1.285.4-Privilege-Escalation.htmlhttp://www.bullguard.com/about/release-notes.aspxhttp://www.exploit-db.com/exploits/35994http://www.greyhathacker.net/?p=818http://www.osvdb.org/114478