Advisory issued on 6th November 2017
Posted by Partner Support team on 15 January 2018 12:36 PM
K7 Security Products before 126.96.36.199 allows local users to gain privileges by sending a specific IOCTL after setting the memory in a particular way.
List of affected products
K7 Consumer Products & K7 Endpoint Security Products
K7 Computing recommends that all customers upgrade to below specified version:
K7 Anti-Virus Plus (15.1.0308), K7 Anti-Virus Premium (15.1.0314), K7 Internet Security (15.1.0297), K7 Ultimate Security (15.1.0324), K7 Total Security (15.1.0324), K7Total Security Plus - (16.0.0131) & K7Endpoint-14.2.0137
We would like to extend our thanks to Paul Jeavons for reporting these bugs to K7 Computing Private Ltd.