CVE-2018-5701

CVE: CVE-2018-5701
Published: 2018-01-31T18:29Z
Vendor: iolo
Products: system_shield
Versions: 5.0.0.136,
Description Language: en
Description: In Iolo System Shield AntiVirus and AntiSpyware 5.0.0.136, the amp.sys driver file contains an Arbitrary Write vulnerability due to not validating input values from IOCtl 0x00226003.
References:
http://packetstormsecurity.com/files/146165/System-Shield-5.0.0.136-Privilege-Escalation.html
https://www.exploit-db.com/exploits/43929/

Exploiting System Shield AntiVirus Arbitrary Write Vulnerability using SeTakeOwnershipPrivilege