Tyler_Dru1D

**Name of the Vulnerable Software and Affected Versions** Binalyze IREC.sys versions 3.11.0 and earlier **Description** An issue in Binalyze IREC.sys allows a local attacker to execute arbitrary code and escalate privileges via the fun 1400084d0 function in the IREC.sys driver. **Recommendations** For versions 3.11.0 and earlier, as a temporary workaround, consider disabling the fun 1400084d0 function in the IREC.sys driver until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.