Buffer overflow

2020-03-2018:15:00

PRIOn knowledge base

www.prio-n.com

4.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.2%

JSON

An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120444 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an arbitrary read primitive that can be used as part of a chain to escalate privileges.

CPENameOperatorVersion
killer_control_centerlt2.1.1352

CPE	Name	Operator	Version
	killer_control_center	lt	2.1.1352

References

github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2019-0006/FEYE-2019-0006.md

support.killernetworking.com/downloads/ReleaseNotes/KillerSoftware_Release_Notes_2.1.1352.pdf

www.killernetworking.com