EUVD-2023-24741

Malicious code in bioql PyPI...

PT-2023-7302 · Amd · Radeon Rx Vega M Graphics Driver

Name of the Vulnerable Software and Affected Versions: RadeonTM RX Vega M Graphics driver for Windows affected versions not specified Description: The issue is related to improper signature verification of the RadeonTM RX Vega M Graphics driver for Windows. This may allow an attacker with admin...

CVE-2023-20562

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...

Input validation

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver potentially leading to arbitrary kernel execution...

CVE-2023-20562

Insufficient validation in the IOCTL Input Output Control input buffer in AMD uProf may allow an authenticated user to load an unsigned driver, potentially leading to arbitrary kernel execution. Mitigation Please contact AMD support for updates...

CVE-2023-20562

CVE-2023-20562 involves AMD μProf (AMD uProf) where there is insufficient validation in the IOCTL input buffer. The impact described across sources is that an authenticated user may load an unsigned driver, potentially enabling arbitrary kernel execution. Connected materials explicitly discuss ex...

PT-2023-5023 · Amd · Amd Uprof

Name of the Vulnerable Software and Affected Versions: AMD uProf affected versions not specified Description: Insufficient validation in the IOCTL input buffer in AMD uProf may allow an authenticated user to load an unsigned driver, potentially leading to arbitrary kernel execution. The issue can...

AMD μProf Security Vulnerability

AMD μProf is a software analysis tool from Ultra Micro Semiconductor AMD. AMD μProf suffers from a security vulnerability that stems from insufficient validation of the IOCTL input buffer, which allows an attacker to load an unsigned driver, leading to arbitrary kernel execution...

Two kernel-mode type-confusion / memory-corruption vulnerabilities in win32k!xxxRemoteReconnect

The Windows Kernel is subject to two related kernel-mode type-confusion vulnerabilities inside win32k!xxxRemoteReconnect. In both cases, a user-mode parameter passed to the syscall is incorrectly resolved to its underlying kernel representation via ObReferenceObjectByHandle passing NULL as the...

KsDumper - Dumping Processes Using The Power Of Kernel Space

I always had an interest in reverse engineering. A few days ago I wanted to look at some game internals for fun, but it was packed & protected by EAC EasyAntiCheat. This means its handle were stripped and I was unable to dump the process from Ring3. I decided to try to make a custom driver that...

Microsoft Windows Security Feature Bypass Vulnerability (CNVD-2019-02774)

Windows is a set of operating systems developed by Microsoft Corporation in the U.S. Windows uses a graphical mode GUI. A security feature bypass vulnerability exists in Microsoft Windows. The vulnerability stems from Windows failing to properly verify kernel driver signatures. An attacker could...