cvedb.io
CVE-2017-6007
MEDIUM · CVSS 5.5
EPSS exploitation probability: 0%
Published 2017-09-13T08:29:00.330 · Last modified 2026-06-17T01:21:36.780

Summary

A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 (included in the HitmanPro.Alert solution and Sophos Clean) allows local users to crash the OS via a malformed IOCTL call.

Affected products

sophos — hitmanpro

Does this affect you?

Add your gear to cvedb and we'll alert you only when sophos ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.