CVE-2019-19820

2020-01-10T17:15:00
ID CVE-2019-19820
Type cve
Reporter cve@mitre.org
Modified 2020-01-22T16:08:00

Description

An invalid pointer vulnerability in IOCTL Handling in the kyrld.sys driver in Kyrol Internet Security 9.0.6.9 allows an attacker to achieve privilege escalation, denial-of-service, and code execution via usermode because 0x9C402405 using METHOD_NEITHER results in a read primitive.