Kingsoft Webshield 'KAVSafe.sys' Driver IOCTL Handling Local Privilege Escalation Vulnerability

Kingsoft Webshield 'KAVSafe.sys' Driver IOCTL Handling Local Privilege Escalation Vulnerability

Kingsoft Webshield is prone to a local privilege-escalation vulnerability.

Local attackers can exploit this issue to execute arbitrary code with superuser privileges and completely compromise the affected computer. Failed exploit attempts will result in a denial-of-service condition.

The issue affects Kingsoft Webshield 3.5.1.2 and prior versions.