Posted by Kyriakos Economou on Jul 10

CVE: CVE-2015-1438

Vendor: Panda Security

Product: Multiple Products

Affected version: 1.0.0.13 (PSKMAD.sys driver version)

Fixed version: 15.1.0 (Products Version)

Reported by: Kyriakos Economou

Details:

Panda Kernel Memory Access Driver doesn’t validate the size of data
to be copied to both an allocated kernel paged pool buffer and to an
allocated non-paged pool buffer. Furthermore, the attacker has control
over the start-to-copy…