CVE-2017-14153

Name of the Vulnerable Software and Affected Versions Jungo WinDriver versions prior to 12.4.0

Description This issue allows local attackers to escalate privileges. An attacker must first obtain the ability to execute low-privileged code on the target system. The flaw exists within the processing of IOCTL 0x953824b7 by the windrvr1240 kernel driver, due to the failure to properly validate user-supplied data, which can result in a kernel pool overflow. This can be leveraged to execute arbitrary code under the context of the kernel.

Recommendations For Jungo WinDriver versions prior to 12.4.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.