CVE-2017-14961

HIGH

Ikarussecurity Anti.virus - Improper Input Validation

Title source: rule

Description

In IKARUS anti.virus 2.16.7, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x8300000c.

Exploits (1)

exploitdb WORKING POC

by Parvez Anwar · clocalwindows_x86-64

https://www.exploit-db.com/exploits/43139

View Code ZIP pw:eip

References (4)

[Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/144955/IKARUS-AntiVirus-2.16.7-Privilege-Escalation.html

[Exploit, Third Party Advisory] https://theevilbit.blogspot.co.uk/2017/11/turning-cve-2017-14961-ikarus-antivirus.html

[Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/43139/

[Vendor Advisory] https://www.ikarussecurity.com/about-ikarus/security-blog/vulnerability-in-windows-antivirus-products-ik-sa-2017-0002/

Scores

CVSS v3 7.8

EPSS 0.0039

EPSS Percentile 60.1%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-20

Status published

Products (1)

ikarussecurity/anti.virus 2.16.7

Published Nov 15, 2017

Tracked Since Feb 18, 2026