cvedb.io
CVE-2018-6476
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2018-01-31T19:29:00.493 · Last modified 2026-06-17T02:01:53.147

Summary

In SUPERAntiSpyware Professional Trial 6.0.1254, the SASKUTIL.SYS driver allows privilege escalation to NT AUTHORITY\SYSTEM because of not validating input values from IOCtl 0x9C402114 or 0x9C402124 or 0x9C40207c.

Affected products

superantispyware — superantispyware

Does this affect you?

Add your gear to cvedb and we'll alert you only when superantispyware ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.