IKARUS anti.virus ntguard_x64 Local Privilege Escalation

This vulnerability allows local attackers to escalate privileges on vulnerable installations of IKARUS anti.virus. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of crafted IOCTL 0x8300000c by the ntguard_x64.sys kernel driver. The issue lies in the failure to properly validate user-supplied data which can result in an out-of-bounds write condition. An attacker can leverage this vulnerability to elevate privileges in context of kernel.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2017-14961
Product Version: 
2017_R2
Released Date: 
Thursday, December 14, 2017 - 00:00