Arbitrary Code Execution Vulnerability in G Data TotalProtection 2014

Arbitrary Code Execution Vulnerability in G Data TotalProtection 2014

CVE-2014-3752 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The MiniIcpt.sys driver in G Data TotalProtection 2014 24.0.2.1 and earlier allows local users with administrator rights to execute arbitrary code with SYSTEM privileges via a crafted 0x83170180 call.

Learn more about our User Device Pen Test.