IObit Malware Fighter v11.0.0.1274 - DoS
5,5
Medium
Discovered by
Offensive Team, Fluid Attacks
Summary
Full name
IObit Malware Fighter v11.0.0.1274 - Denial of Service (DoS)
Code name
State
Public
Release date
16 ene 2024
Affected product
IObit Malware Fighter
Vendor
IObit
Affected version(s)
Version 11.0.0.1274
Vulnerability name
Denial of Service (DoS)
Vulnerability type
Remotely exploitable
No
CVSS v3.0 vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CVSS v3.0 base score
5.5
Exploit available
Yes
CVE ID(s)
Description
IObit Malware Fighter v11.0.0.1274 is vulnerable to a Denial of Service vulnerability by triggering the 0x8001E00C IOCTL code of the ImfHpRegFilter.sys driver.
Vulnerability
The 0x8001E00C IOCTL code of the ImfHpRegFilter.sys driver is vulnerable to DoS, leading to a BSOD of the affected computer caused by a NULL pointer dereference.
Our security policy
We have reserved the ID CVE-2024-0430 to refer to this issue from now on.
System Information
Version: IObit Malware Fighter v11.0.0.1274
Operating System: Windows
Mitigation
There is currently no patch available for this vulnerability.
References
Vendor page https://www.iobit.com/en/index.php
Product page https://www.iobit.com/en/malware-fighter.php
Timeline
IA generativa
11 ene 2024
Vendor contacted
11 ene 2024
Public disclosure
16 ene 2024
