Michal Poslušný

**Name of the Vulnerable Software and Affected Versions** Devid Espenschied PC Analyser versions through 4.10 **Description** An issue was discovered in the PCADRVX64.SYS kernel driver, which exposes IOCTL functionality. This allows low-privilege users to read and write to arbitrary Model Specific Registers (MSRs), potentially leading to arbitrary Ring-0 code execution and escalation of privileges. **Recommendations** For Devid Espenschied PC Analyser versions through 4.10, consider disabling the PCADRVX64.SYS kernel driver until a patch is available to prevent low-privilege users from exploiting the IOCTL functionality. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Devid Espenschied PC Analyser versions through 4.10 **Description** An issue was discovered that allows low-privilege users to read and write arbitrary physical memory due to the exposure of IOCTL functionality by the PCADRVX64.SYS kernel driver. This could lead to arbitrary Ring-0 code execution and escalation of privileges. **Recommendations** For Devid Espenschied PC Analyser versions through 4.10, consider disabling the PCADRVX64.SYS kernel driver as a temporary workaround until a patch is available. Restrict access to the IOCTL functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PassMark BurnInTest versions 9.1 Build 1008 OSForensics versions 7.1 Build 1012 PerformanceTest versions 10.0 Build 1008 **Description** An issue was discovered that allows low-privilege users to map arbitrary physical memory into the address space of the calling process through the kernel driver's IOCTL functionality. This could lead to arbitrary Ring-0 code execution and escalation of privileges, affecting DirectIo32.sys and DirectIo64.sys drivers. **Recommendations** For PassMark BurnInTest version 9.1 Build 1008, update to BurnInTest v9.2. For OSForensics version 7.1 Build 1012, update to OSForensics v8.0. For PerformanceTest version 10.0 Build 1008, update to PerformanceTest v10.0 Build 1009.

**Name of the Vulnerable Software and Affected Versions** PassMark BurnInTest versions through 9.1 OSForensics versions through 7.1 PerformanceTest versions through 10 **Description** An issue was discovered that could lead to arbitrary Ring-0 code execution and escalation of privileges due to a buffer overflow. The driver's IOCTL request handler attempts to copy the input buffer onto the stack without checking its size. This affects the DirectIo32.sys and DirectIo64.sys drivers. **Recommendations** For PassMark BurnInTest versions through 9.1, update to a version that fixes the buffer overflow issue in the IOCTL request handler. For OSForensics versions through 7.1, update to a version that fixes the buffer overflow issue in the IOCTL request handler. For PerformanceTest versions through 10, update to a version that fixes the buffer overflow issue in the IOCTL request handler.

**Name of the Vulnerable Software and Affected Versions** PassMark BurnInTest versions through 9.1 OSForensics versions through 7.1 PerformanceTest versions through 10 **Description** An issue was discovered that allows low-privilege users to read and write to arbitrary Model Specific Registers (MSRs) through the kernel driver's IOCTL functionality. This could lead to arbitrary Ring-0 code execution and escalation of privileges, affecting the DirectIo32.sys and DirectIo64.sys drivers. **Recommendations** For PassMark BurnInTest versions through 9.1, update to a version that fixes the issue with the DirectIo32.sys and DirectIo64.sys drivers. For OSForensics versions through 7.1, update to a version that fixes the issue with the DirectIo32.sys and DirectIo64.sys drivers. For PerformanceTest versions through 10, update to a version that fixes the issue with the DirectIo32.sys and DirectIo64.sys drivers.