Iobit : Security Vulnerabilities, CVEs, Published In 2019
IMFForceDelete.sys in IObit Malware Fighter 6.2 allows a low privileged user to send IOCTL 0x8016E000 along with a user defined string to a file; that file will be promptly deleted regardless of access controls.
Max CVSS
6.5
EPSS Score
0.06%
Published
2019-04-30
Updated
2020-08-24
SmartDefragDriver.sys (2.0) in IObit Smart Defrag 6 never frees an executable kernel pool that is allocated with user defined bytes and size when IOCTL 0x9C401CC0 is called. This kernel pointer can be leaked if the kernel pool becomes a "big" pool.
Max CVSS
5.5
EPSS Score
0.05%
Published
2019-04-11
Updated
2020-08-24
SmartDefragDriver.sys (2.0) in IObit Smart Defrag 6 never frees an executable kernel pool that is allocated with user defined bytes and size when IOCTL 0x9C401CC4 is called. This kernel pointer can be leaked if the kernel pool becomes a "big" pool.
Max CVSS
5.5
EPSS Score
0.05%
Published
2019-03-21
Updated
2020-08-24
3 vulnerabilities found