CVE-2019-17603

2020-06-02T15:15:00
ID CVE-2019-17603
Type cve
Reporter cve@mitre.org
Modified 2020-06-25T18:15:00

Description

Ene.sys in Asus Aura Sync through 1.07.71 does not properly validate input to IOCTL 0x80102044, 0x80102050, and 0x80102054, which allows local users to cause a denial of service (system crash) or gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption.