40 matches found
EUVD-2019-7929
Malware in sbrugna...
EUVD-2018-10258
Malware in sbrugna...
EUVD-2018-10259
Malware in sbrugna...
EUVD-2018-10257
Malware in sbrugna...
EUVD-2022-47828
Malicious code in bioql PyPI...
CVE-2022-44898
The MsIo64.sys component in Asus Aura Sync through v1.07.79 does not properly validate input to IOCTL 0x80102040, 0x80102044, 0x80102050, and 0x80102054, allowing attackers to trigger a memory corruption and cause a Denial of Service DoS or escalate privileges via crafted IOCTL requests...
CVE-2022-44898
The MsIo64.sys component in Asus Aura Sync through v1.07.79 does not properly validate input to IOCTL 0x80102040, 0x80102044, 0x80102050, and 0x80102054, allowing attackers to trigger a memory corruption and cause a Denial of Service DoS or escalate privileges via crafted IOCTL requests...
CVE-2022-44898
The MsIo64.sys component in Asus Aura Sync through v1.07.79 does not properly validate input to IOCTL 0x80102040, 0x80102044, 0x80102050, and 0x80102054, allowing attackers to trigger a memory corruption and cause a Denial of Service DoS or escalate privileges via crafted IOCTL requests...
Memory corruption
The MsIo64.sys component in Asus Aura Sync through v1.07.79 does not properly validate input to IOCTL 0x80102040, 0x80102044, 0x80102050, and 0x80102054, allowing attackers to trigger a memory corruption and cause a Denial of Service DoS or escalate privileges via crafted IOCTL requests...
CVE-2022-44898
The MsIo64.sys component in Asus Aura Sync through v1.07.79 does not properly validate input to IOCTL 0x80102040, 0x80102044, 0x80102050, and 0x80102054, allowing attackers to trigger a memory corruption and cause a Denial of Service DoS or escalate privileges via crafted IOCTL requests...
CVE-2022-44898
The CVE-2022-44898 issue affects Asus Aura Sync: MsIo64.sys in v1.07.79 and earlier does not properly validate inputs to IOCTLs 0x80102040, 0x80102044, 0x80102050, and 0x80102054, enabling memory corruption that can lead to a Denial of Service or privilege escalation via crafted IOCTL requests. D...
PT-2022-27329 · Asus · Asus Aura Sync
Name of the Vulnerable Software and Affected Versions: Asus Aura Sync versions through v1.07.79 Description: The issue concerns the MsIo64.sys component, which does not properly validate input to certain IOCTL requests, specifically 0x80102040, 0x80102044, 0x80102050, and 0x80102054. This allows...
ASUS Aura Sync 缓冲区错误漏洞
ASUS Aura Sync is a hardware light synchronization plug-in from the Chinese company Asus ASUS. A security vulnerability exists in ASUS Sync version v1.07.79, which stems from the failure of the MsIo64.sys component to properly validate inputs, allowing an attacker to trigger memory corruption and...
ASUS Aura Sync 1.07.71 CVE-2019-17603 - Privilege Escalation
ASUS Aura Sync version 1.07.71 ene.sys privilege escalation kernel exploit. // CVE-2019-17603: ASUS Aura Sync 1.07.71 'ene.sys' EoP Kernel Exploit // Discovered by @dhn // Author of PoC: Connor McGarr @33y0re - https://connormcgarr.github.io // Windows 10 RS1 Version 10.0.14393 Build 14393 //...
ASUS Aura Sync 1.07.71 Privilege Escalation Exploit
// CVE-2019-17603: ASUS Aura Sync 1.07.71 'ene.sys' EoP Kernel Exploit // Discovered by @dhn // Author of PoC: Connor McGarr @33y0re - https://connormcgarr.github.io // Windows 10 RS1 Version 10.0.14393 Build 14393 // Tested with VBS, HyperGuard, and PatchGuard disabled include include include //...
ASUS Aura Sync Buffer Overflow Vulnerability
ASUS Aura Sync is a hardware light synchronization plug-in from Asus Taiwan, China. A security vulnerability exists in the Ene.sys file in ASUS Aura Sync 1.07.71 and earlier versions, which originates from the program failing to properly validate input sent to IOCTL 0x80102044, 0x80102050, and...
CVE-2019-17603
Ene.sys in Asus Aura Sync through 1.07.71 does not properly validate input to IOCTL 0x80102044, 0x80102050, and 0x80102054, which allows local users to cause a denial of service system crash or gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption...
CVE-2019-17603
Ene.sys in Asus Aura Sync through 1.07.71 does not properly validate input to IOCTL 0x80102044, 0x80102050, and 0x80102054, which allows local users to cause a denial of service system crash or gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption...
Memory corruption
Ene.sys in Asus Aura Sync through 1.07.71 does not properly validate input to IOCTL 0x80102044, 0x80102050, and 0x80102054, which allows local users to cause a denial of service system crash or gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption...
CVE-2019-17603
Affected software: ASUS Aura Sync (Ene.sys) up to version 1.07.71. Vulnerability: IOCTL handling in Ene.sys does not properly validate input to IOCTL 0x80102044, 0x80102050, and 0x80102054, enabling local users to cause a denial of service (system crash) or gain privileges via crafted kernel addr...