NULL Pointer Dereference Vulnerability in Kingsoft Internet Security 9+ Kernel Driver

NULL Pointer Dereference Vulnerability in Kingsoft Internet Security 9+ Kernel Driver

CVE-2018-9151 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver KWatch3.sys allows local non-privileged users to crash the system via IOCTL 0x80030030.

Learn more about our User Device Pen Test.