2 matches found
CVE-2019-11867
Realtek NDIS driver rt640x64.sys, file version 10.1.505.2015, fails to do any size checking on an input buffer from user space, which the driver assumes has a size greater than zero bytes. To exploit this vulnerability, an attacker must send an IRP with a system buffer size of 0...
CVE-2019-11867
CVE-2019-11867 affects Realtek NDIS driver rt640x64.sys (version 10.1.505.2015). The driver does not validate the size of a user-space input buffer, assuming a non-zero length. An attacker must send an IRP with a system buffer size of 0, enabling a local access scenario. CVSS data from the source...