0
(0)

Description

In K7 Security Products before 15.1.0.53, user-controlled input to the K7Sentry device is not sufficiently authenticated: a local user with a LOW integrity process can access a raw hard disk by sending a specific IOCTL.

CVE-2017-17429

List of affected products

K7 Consumer Products & K7 Endpoint Security Products

Fixed Version

K7 Computing recommends that all customers upgrade to below specified version:

K7 Anti-Virus Plus (15.1.0308), K7 Anti-Virus Premium (15.1.0314), K7 Internet Security (15.1.0297), K7 Ultimate Security (15.1.0324), K7 Total Security (15.1.0324), K7Total Security Plus – (16.0.0131) & K7Endpoint-14.2.0137

Acknowledgments

We would like to extend our thanks to Paul Jeavons for reporting these bugs to K7 Computing Private Ltd.

Source : Official K7 Computing Brand
Editor by : BEST Antivirus KBS Team

How useful was this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

(Visited 14 times, 1 visits today)