Lucene search

K
zdiLucas Leong (@_wmliang_)ZDI-19-188
HistoryFeb 12, 2019 - 12:00 a.m.

Microsoft HID Driver Numeric Truncation Information Disclosure Vulnerability

2019-02-1200:00:00
Lucas Leong (@_wmliang_)
www.zerodayinitiative.com
7

0.001 Low

EPSS

Percentile

45.9%

This vulnerability allows attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists in the hidparse.sys driver, within the function HidPGetSpecificButtonCaps. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges in the context of the kernel.