SouhailHammou

2 exploits Active since May 2019

CVE-2019-12042 WRITEUP CRITICAL WORKING POC

Panda <18.07.03 - Privilege Escalation

Insecure permissions of the section object Global\PandaDevicesAgentSharedMemory and the event Global\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security.

CVSS 9.8

View Code

CVE-2019-14694 WRITEUP MEDIUM WORKING POC

Comodo Antivirus 12.0.0.6870 - Use After Free

A use-after-free flaw in the sandbox container implemented in cmdguard.sys in Comodo Antivirus 12.0.0.6870 can be triggered due to a race condition when handling IRP_MJ_CLEANUP requests in the minifilter for directory change notifications. This allows an attacker to cause a denial of service (BSOD) when an executable is run inside the container.

CVSS 4.7

View Code