Denial of Service Vulnerability in Malwarebytes Anti-Exploit
CVE-2014-100039

Currently unrated

Key Information:

Vendor: Malwarebytes
Status: Malwarebytes Anti-exploit
Vendor: CVE Published:; 13 January 2015

🔔 Create Malwarebytes Vulnerability Alert

What is CVE-2014-100039?

A vulnerability in Malwarebytes Anti-Exploit allows local users to exploit an issue in the mbae.sys driver, leading to a denial of service condition. Specifically, a crafted size in an unspecified IOCTL call can trigger an out-of-bounds read, potentially crashing the system. This flaw affects versions prior to 1.05.1.2014 and underscores the importance of keeping security software up to date to prevent local exploitation.

References

http://www.osvdb.org/114249

vdb-entryx_refsource_OSVDB

https://www.malwarebytes.org/support/releasehistory/

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 13, 2015

CVE-2014-100039 Data

JSON