BID:39936

360 Anti-Virus and 360 Security Guard Multiple Local Denial Of Service Vulnerabilities

Info

360 Anti-Virus and 360 Security Guard Multiple Local Denial Of Service Vulnerabilities

Bugtraq ID:	39936
Class:	Input Validation Error
CVE:
Remote:	No
Local:	Yes
Published:	May 05 2010 12:00AM
Updated:	May 05 2010 12:00AM
Credit:	NT Internals
Vulnerable:	360.cn 360 Security Guard 6.1.5.1010 360.cn 360 Anti-Virus 1.1.0.1096

Not Vulnerable:

Discussion

360 Anti-Virus and 360 Security Guard Multiple Local Denial Of Service Vulnerabilities

360 Anti-Virus and 360 Security Guard are prone to multiple local denial-of-service vulnerabilities because the applications fail to properly handle embedded pointers.

An attacker may exploit these issues to crash the affected computer, denying further service to legitimate users.

Exploit / POC

360 Anti-Virus and 360 Security Guard Multiple Local Denial Of Service Vulnerabilities

Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

360 Anti-Virus and 360 Security Guard Multiple Local Denial Of Service Vulnerabilities

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

References

360 Anti-Virus and 360 Security Guard Multiple Local Denial Of Service Vulnerabilities

References:

Vendor Homepage (360.cn)
NTIADV 1002 360 Software Multiple Local Denial of Service Vulnerabilities (NTIADV)