13 matches found
CVE-2021-27965
The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request...
CVE-2022-44898
The MsIo64.sys component in Asus Aura Sync through v1.07.79 does not properly validate input to IOCTL 0x80102040, 0x80102044, 0x80102050, and 0x80102054, allowing attackers to trigger a memory corruption and cause a Denial of Service DoS or escalate privileges via crafted IOCTL requests...
Memory corruption
The MsIo64.sys component in Asus Aura Sync through v1.07.79 does not properly validate input to IOCTL 0x80102040, 0x80102044, 0x80102050, and 0x80102054, allowing attackers to trigger a memory corruption and cause a Denial of Service DoS or escalate privileges via crafted IOCTL requests...
CVE-2022-44898
The MsIo64.sys component in Asus Aura Sync through v1.07.79 does not properly validate input to IOCTL 0x80102040, 0x80102044, 0x80102050, and 0x80102054, allowing attackers to trigger a memory corruption and cause a Denial of Service DoS or escalate privileges via crafted IOCTL requests...
PT-2022-27329 · Asus · Asus Aura Sync
Name of the Vulnerable Software and Affected Versions: Asus Aura Sync versions through v1.07.79 Description: The issue concerns the MsIo64.sys component, which does not properly validate input to certain IOCTL requests, specifically 0x80102040, 0x80102044, 0x80102050, and 0x80102054. This allows...
ASUS Aura Sync 缓冲区错误漏洞
ASUS Aura Sync is a hardware light synchronization plug-in from the Chinese company Asus ASUS. A security vulnerability exists in ASUS Sync version v1.07.79, which stems from the failure of the MsIo64.sys component to properly validate inputs, allowing an attacker to trigger memory corruption and...
CVE-2021-27965
The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request...
CVE-2021-27965
The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request...
Buffer overflow
The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request...
CVE-2021-27965
The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request...
CVE-2021-27965
The CVE-2021-27965 issue affects the MsIo64.sys driver in MSI Dragon Center prior to version 2.0.98.0, where a stack/buffer overflow in IOCTL handlers (0x80102040, 0x80102044, 0x80102050, 0x80102054) enables privilege escalation. The vulnerability is tied to the driver before 1.1.19.1016 and can ...
MSI Ambient Link Multiple Vulnerabilities
1. Advisory Information Title: MSI Ambient Link Multiple Vulnerabilities Advisory ID: CORE-2020-0012 Advisory URL: https://www.coresecurity.com/core-labs/advisories/msi-ambient-link-multiple-vulnerabilities Date published: 2020-08-19 Date of last update: 2020-08-19 Vendors contacted: MSI Release...
Patriot Viper RGB Local Elevation of Privilege Vulnerability
The Patriot Viper RGB is a memory module device from Patriot Corporation of Taiwan, China. A local elevation of privilege vulnerability exists in the MsIo64.sys and MsIo32.sys drivers in Patriot Viper RGB versions prior to 1.1, which can be exploited by a local attacker to read or write to memory...