3 matches found
CVE-2021-21789
A privilege escalation vulnerability exists in the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O write requests. During IOCTL 0x9c40a0e0, the first dword passed in the input buffer is the device port to write to and the dword at offset 4 is the value to write via...
CVE-2021-21789
Summary: CVE-2021-21789 concerns a privilege-escalation vulnerability in IOBit Advanced SystemCare Ultimate 14.2.0.220’s driver. The issue arises in the driver’s handling of Privileged I/O write requests via IOCTL 0x9c40a0e0, where the first dword of the input buffer is the target device port and...
IOBit Advanced SystemCare ultimate privileged I/O write vulnerabilities
Summary A privilege escalation vulnerability exists in the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O write requests. A specially crafted I/O request packet IRP can lead to privileged writes which can result in elevation of privileges of the current user. A...