Parvez Anwar

27 exploits Active since Jan 2007
CVE-2017-15921 EXPLOITDB HIGH c WORKING POC
Watchdog Anti-Malware and Online Security Pro 2.74.186.150 - NULL Pointer Dereference via ioctl 0x80002010
In Watchdog Anti-Malware 2.74.186.150 and Online Security Pro 2.74.186.150, the zam32.sys driver contains a NULL pointer dereference vulnerability that gets triggered when sending an operation to ioctl 0x80002010. This is due to the input buffer being NULL or the input buffer size being 0 as they are not validated.
CVSS 7.5
CVE-2014-100039 EXPLOITDB c WORKING POC
Malwarebytes Anti-Exploit < 1.04.1.1012 - Denial of Service via IOCTL Call
mbae.sys in Malwarebytes Anti-Exploit before 1.05.1.2014 allows local users to cause a denial of service (crash) via a crafted size in an unspecified IOCTL call, which triggers an out-of-bounds read. NOTE: some of these details are obtained from third party information.