Fermín J. Serna

**Name of the Vulnerable Software and Affected Versions** NtRegmon versions prior to 6.12 **Description** The issue allows local users to cause a denial of service, resulting in a system crash, by providing invalid pointers to hook functions such as `ZwSetQueryValue` while NtRegmon is running. This is due to NtRegmon's failure to properly check argument pointers supplied to the `ZwSetQueryValue` kernel hook, leading to a loss of availability for the Windows machine. **Recommendations** For versions prior to 6.12, update to version 6.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the `ZwSetQueryValue` kernel hook to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Integrity Protection Driver (IPD) versions 1.4 and earlier **Description** The issue allows local users to cause a denial of service, resulting in a crash, by providing an invalid pointer in the `oa` argument to the ZwOpenSection function. **Recommendations** For versions 1.4 and earlier, update to a version later than 1.4 to resolve the issue.