Main Vulnerability Database Vulnerabilities #VU36481

Write-what-where Condition in HitmanPro.Alert - CVE-2018-3971

Published: October 25, 2018 / Updated: August 8, 2020

Vulnerability identifier: #VU36481

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-3971

CWE-ID: CWE-123

Exploitation vector: Local access

Exploit availability: No public exploit available

Vendor: Sophos

Affected software:
HitmanPro.Alert

Detailed vulnerability description

The vulnerability allows a local authenticated user to execute arbitrary code.

An exploitable arbitrary write vulnerability exists in the 0x2222CC IOCTL handler functionality of Sophos HitmanPro.Alert 3.7.6.744. A specially crafted IRP request can cause the driver to write data under controlled by an attacker address, resulting in memory corruption. An attacker can send IRP request to trigger this vulnerability.

How to mitigate CVE-2018-3971

Install update from vendor's website.

Write-what-where Condition in HitmanPro.Alert - CVE-2018-3971

Detailed vulnerability description

How to mitigate CVE-2018-3971

Sources

Please verify you're human