Name of the Vulnerable Software and Affected Versions Secret Net and Secret Net Studio (affected versions not specified)

Description The issue is related to errors in privilege management in the kernel driver sncc0.sys of the Secret Net and Secret Net Studio information protection systems. Exploitation of this issue can allow an attacker to bypass the kernel address space layout randomization (ASLR) mechanism and obtain the load address of the sncc0.sys driver by running a specially crafted user application.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.