High severity7.5NVD Advisory· Published Oct 30, 2017· Updated Jun 17, 2026
CVE-2017-15920
CVE-2017-15920
Description
In Watchdog Anti-Malware 2.74.186.150 and Online Security Pro 2.74.186.150, the zam32.sys driver contains a NULL pointer dereference vulnerability that gets triggered when sending an operation to ioctl 0x80002054. This is due to the input buffer being NULL or the input buffer size being 0 as they are not validated.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:watchdogdevelopment:anti-malware:2.74.186.150:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:watchdogdevelopment:anti-malware:2.74.186.150:*:*:*:*:*:*:*
- (no CPE)range: 2.74.186.150
- cpe:2.3:a:watchdogdevelopment:online_security_pro:2.74.186.150:*:*:*:*:*:*:*
- Range: 2.74.186.150
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/144786/Watchdog-Development-Anti-Malware-Online-Security-Pro-NULL-Pointer-Dereference.htmlnvdExploitIssue TrackingThird Party AdvisoryVDB Entry
- www.exploit-db.com/exploits/43058/nvdExploitIssue TrackingThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.