17 matches found
EUVD-2017-18700
Malware in sbrugna...
CVE-2017-14398
rzpnk.sys in Razer Synapse 2.20.15.1104 allows local users to read and write to arbitrary memory locations, and consequently gain privileges, via a methodology involving a handle to \Device\PhysicalMemory, IOCTL 0x22A064, and ZwMapViewOfSection...
Design/Logic Flaw
rzpnk.sys in Razer Synapse 2.20.15.1104 allows local users to read and write to arbitrary memory locations, and consequently gain privileges, via a methodology involving a handle to \Device\PhysicalMemory, IOCTL 0x22A064, and ZwMapViewOfSection...
CVE-2017-14398
rzpnk.sys in Razer Synapse 2.20.15.1104 allows local users to read and write to arbitrary memory locations, and consequently gain privileges, via a methodology involving a handle to \Device\PhysicalMemory, IOCTL 0x22A064, and ZwMapViewOfSection...
CVE-2017-14398
The CVE-2017-14398 entry affects Razer Synapse using rzpnk.sys (v2.20.15.1104). The vulnerability enables local elevation of privilege by a local attacker who uses a handle to \Device\PhysicalMemory, IOCTL 0x22A064, and ZwMapViewOfSection to read/write arbitrary memory locations. This results in ...
Razer Synapse rzpnk.sys Driver Elevation of Privilege Vulnerability
Razer Synapse is a Razer device configuration software from Razer USA. A security vulnerability in the Razer Synapse rzpnk.sys driver allows remote attackers to exploit the vulnerability to submit specially crafted IOCTL requests for elevated privileges...
Razer Synapse rzpnk.sys Driver Out-of-Bounds Read Vulnerability
Razer Synapse is a Razer device configuration software from Razer USA. A security vulnerability in the Razer Synapse rzpnk.sys driver allows remote attackers to exploit the vulnerability by submitting specially crafted IOCTL requests to read memory out-of-bounds, resulting in a denial-of-service...
CVE-2017-9769
A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process...
CVE-2017-9769
A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process...
Code injection
A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process...
CVE-2017-9770
A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse that can cause an out of bounds read operation to occur due to a field within the IOCTL data being used as a length...
CVE-2017-9769
A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process...
CVE-2017-9770
A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse that can cause an out of bounds read operation to occur due to a field within the IOCTL data being used as a length. Recent assessments: zeroSteiner at December 18, 2019 1:17am UTC reported: A vulnerability exists...
CVE-2017-9769
A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process. Recent assessments: zeroSteiner at November 21, 2019 11:14pm UTC reported: Analysis The Razer rzpnk.sys driver...
Razer Synapse 2.20.15.1104 - rzpnk.sys ZwOpenProcess (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/exploit/local/windowskernel' require 'rex' require 'metasm' class MetasploitModule 'Razer Synapse rzpnk.sys ZwOpenProcess', 'Description' = %q A...
Razer Synapse rzpnk.sys ZwOpenProcess Exploit
A vulnerability exists in the latest version of Razer Synapse v2.20.15.1104 as of the day of disclosure which can be leveraged locally by a malicious application to elevate its privileges to those of NTAUTHORITY\SYSTEM. This module requires Metasploit: http//metasploit.com/download Current source...
Razer Synapse rzpnk.sys ZwOpenProcess
A vulnerability exists in the latest version of Razer Synapse v2.20.15.1104 as of the day of disclosure which can be leveraged locally by a malicious application to elevate its privileges to those of NTAUTHORITY\SYSTEM. The vulnerability lies in a specific IOCTL handler in the rzpnk.sys driver th...