Remote Code Execution Vulnerability in Malwarebytes Anti-Malware and Anti-Exploit
CVE-2014-4936

Currently unrated

Key Information:

Vendor: Malwarebytes
Status: Malwarebytes Anti-exploit
Vendor: CVE Published:; 16 December 2014

🔔 Create Malwarebytes Vulnerability Alert

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 16%

What is CVE-2014-4936?

A vulnerability exists in the upgrade functionality of Malwarebytes Anti-Malware and Anti-Exploit prior to specified versions, which can be exploited by man-in-the-middle attackers. By spoofing the update server, an attacker can upload and execute arbitrary code on a victim’s system, potentially leading to unauthorized control and compromise of sensitive information. Users are urged to update to the latest versions to mitigate this security risk.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2014-4936
Created by 0x3a

References

http://blog.0x3a.com/post/104954032239/cve-2014-4936-malw...

x_refsource_MISC

http://packetstormsecurity.com/files/130244/Malwarebytes-...

x_refsource_MISC

EPSS Score

16% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 16, 2014
🟡
Public PoC available
Oct 5, 2014
👾
Exploit known to exist
Oct 5, 2014
Vulnerability Reserved
Jul 11, 2014

CVE-2014-4936 Data

JSON