Bo Zhou

**Name of the Vulnerable Software and Affected Versions** Microsoft Ancillary Function Driver (afd.sys) versions prior to the fixed version **Description** The issue is related to improper input validation in the Ancillary Function Driver, allowing local users to gain privileges via a crafted application. This vulnerability enables an attacker to execute code with elevated privileges, potentially leading to full control over the system, including the ability to install programs, view, modify, and delete data, and create new accounts with full administrator rights. **Recommendations** For Microsoft Ancillary Function Driver (afd.sys), update to a version that includes the fix for this issue to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.