CVE-2014-9643 Information

Description

K7Sentry.sys in K7 Computing Ultimate Security Anti-Virus Plus and Total Security before 14.2.0.253 allows local users to write to arbitrary memory locations and consequently gain privileges via a crafted 0x95002570 0x95002574 0x95002580 0x950025a8 0x950025ac or 0x950025c8 IOCTL call.

Reference

http://packetstormsecurity.com/files/130246/K7-Computing-14.2.0.240-Privilege-Escalation.html http://www.exploit-db.com/exploits/35992 http://www.greyhathacker.net/?p=818 http://www.osvdb.org/113007