NVD

Id
34594  
Name
CVE-2014-7136  
Description
Heap-based buffer overflow in the K7FWFilt.sys kernel mode driver (aka K7Firewall Packet Driver) before 14.0.1.16, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via a crafted parameter in a DeviceIoControl API call.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2014-12-12  
Modified Date
2014-12-15  
Seq
2014-7136  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
178091 34594 CVE-2014-7136 http://packetstormsecurity.com/files/129474/K7-Computing-Multiple-Products-K7FWFilt.sys-Privilege-Escalation.html  View
178092 34594 CVE-2014-7136 20141210 CVE-2014-7136 - Privilege Escalation In K7 Computing Multiple Products [K7FWFilt.sys]  View
178093 34594 CVE-2014-7136 https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-7136/  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
17114 JVNDB-2014-005989 複数の K7 Computing 製品で使用される K7FWFilt.sys カーネルモードドライバにおけるヒープベースのバッファオーバーフローの脆弱性 複数の K7 Computing 製品で使用される K7FWFilt.sys カーネルモードドライバ (別名 K7Firewall Packet Driver) には、ヒープベースのバッファオーバーフローの脆弱性が存在します。 CVE-2014-7136 74428 CVE-2014-7136 34594 7.2 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-005989.html 2014-11-11 2014-12-16 View