CVE-2014-8956: Buffer Overflow
First published: Fri Dec 12 2014(Updated: )
Stack-based buffer overflow in the K7Sentry.sys kernel mode driver (aka K7AV Sentry Device Driver) before 12.8.0.119, as used in multiple K7 Computing products, allows local users to execute arbitrary code with kernel privileges via unspecified vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| K7 Computing Anti-Virus | <=12.8.0.118 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2014-8956?
CVE-2014-8956 has a high severity rating due to its potential for local users to execute arbitrary code with kernel privileges.
How do I fix CVE-2014-8956?
To fix CVE-2014-8956, users should update the K7AV Sentry Device Driver to version 12.8.0.119 or later.
Who is affected by CVE-2014-8956?
CVE-2014-8956 affects local users of K7 Computing products utilizing versions of the K7AV Sentry Device Driver below 12.8.0.119.
What type of vulnerability is CVE-2014-8956?
CVE-2014-8956 is categorized as a stack-based buffer overflow vulnerability.
When was CVE-2014-8956 disclosed?
CVE-2014-8956 was disclosed in December 2014.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/k7computing
- canonical/k7 computing anti-virus
- version/k7 computing anti-virus/12.8.0.118