Kyriakos Economou

3 exploits Active since Apr 2016
CVE-2016-3943 EXPLOITDB HIGH text WRITEUP
Panda Endpoint Administration Agent <7.50.00 - Privilege Escalation
Panda Endpoint Administration Agent before 7.50.00, as used in Panda Security for Business products for Windows, uses a weak ACL for the Panda Security/WaAgent directory and sub-directories, which allows local users to gain SYSTEM privileges by modifying an executable module.
CVSS 7.8
CVE-2015-7378 EXPLOITDB HIGH text WRITEUP
Panda Security URL Filtering < 4.3.1.8 - Privilege Escalation via Weak Directory ACL
Panda Security URL Filtering before 4.3.1.9 uses a weak ACL for the "Panda Security URL Filtering" directory and installed files, which allows local users to gain SYSTEM privileges by modifying Panda_URL_Filteringb.exe.
CVSS 7.8
CVE-2017-18019 EXPLOITDB HIGH WORKING POC
K7 Total Security < 15.1.0.305 - Arbitrary Memory Read via K7Sentry Device Input
In K7 Total Security before 15.1.0.305, user-controlled input to the K7Sentry device is not sufficiently sanitized: the user-controlled input can be used to compare an arbitrary memory address with a fixed value, which in turn can be used to read the contents of arbitrary memory. Similarly, the product crashes upon a \\.\K7Sentry DeviceIoControl call with an invalid kernel pointer.
CVSS 7.1