CVE-2019-19820

Name of the Vulnerable Software and Affected Versions Kyrol Internet Security version 9.0.6.9

Description The issue is related to an invalid pointer vulnerability in IOCTL Handling in the kyrld.sys driver. This vulnerability allows an attacker to achieve privilege escalation, denial-of-service, and code execution via usermode. The vulnerability is triggered by using the 0x9C402405 IOCTL code with the METHOD NEITHER method, resulting in a read primitive.

Recommendations For Kyrol Internet Security version 9.0.6.9, consider disabling the kyrld.sys driver as a temporary workaround until a patch is available. Restrict access to the IOCTL Handling functionality to minimize the risk of exploitation. Avoid using the 0x9C402405 IOCTL code with the METHOD NEITHER method in the affected driver until the issue is resolved.