RSS   Vulnerabilities for 'Amd64 kernel driver'   RSS

2018-05-09
 
CVE-2018-8061

CWE-119
 

 
HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send IOCTL 0x85FE2608 to the device driver with the HWiNFO32 symbolic device name, resulting in direct physical memory read or write.

 
 
CVE-2018-8060

CWE-476
 

 
HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send an IOCTL to the device driver. If input and/or output buffer pointers are NULL or if these buffers' data are invalid, a NULL/invalid pointer access occurs, resulting in a Windows kernel panic aka Blue Screen. This affects IOCTLs higher than 0x85FE2600 with the HWiNFO32 symbolic device name.

 


Copyright 2018, cxsecurity.com

 

Back to Top