CVE-2017-14075

Name of the Vulnerable Software and Affected Versions Jungo WinDriver versions 12.4.0 and earlier

Description This issue allows local attackers to escalate privileges. An attacker must first obtain the ability to execute low-privileged code on the target system. The flaw exists within the processing of IOCTL 0x953824a7 by the windrvr1240 kernel driver, due to the failure to properly validate user-supplied data, resulting in an out-of-bounds write condition. This can be leveraged to execute arbitrary code under the context of the kernel.

Recommendations For Jungo WinDriver versions 12.4.0 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.