CVE-2014-9642
Severity CVSS v4.0:
Pending analysis
Type:
CWE-264
Permissions, Privileges, and Access Control
Publication date:
06/02/2015
Last modified:
12/04/2025
Description
bdagent.sys in BullGuard Antivirus, Internet Security, Premium Protection, and Online Backup before 15.0.288 allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted 0x0022405c IOCTL call.
Impact
Base Score 2.0
7.20
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:bullguard:bdagent.sys:*:*:*:*:*:*:*:* | 1.0.0.6 (including) | |
| cpe:2.3:a:bullguard:internet_security:*:*:*:*:*:*:*:* | 14.1.287 (including) | |
| cpe:2.3:a:bullguard:online_backup:*:*:*:*:*:*:*:* | 14.1.287 (including) | |
| cpe:2.3:a:bullguard:premium_protection:*:*:*:*:*:*:*:* | 14.1.287 (including) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://packetstormsecurity.com/files/130247/BullGuard-14.1.285.4-Privilege-Escalation.html
- http://www.bullguard.com/about/release-notes.aspx
- http://www.exploit-db.com/exploits/35994
- http://www.greyhathacker.net/?p=818
- http://www.osvdb.org/114478
- http://packetstormsecurity.com/files/130247/BullGuard-14.1.285.4-Privilege-Escalation.html
- http://www.bullguard.com/about/release-notes.aspx
- http://www.exploit-db.com/exploits/35994
- http://www.greyhathacker.net/?p=818
- http://www.osvdb.org/114478