PT-2015-6929 · Silicon Integrated Systems · Silicon Integrated Systems Windowsxp Display Manager

Matt Bergin

Published

2015-09-16

Updated

2018-10-09

CVE-2015-5465

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Silicon Integrated Systems WindowsXP Display Manager (aka VGA Driver Manager and VGA Display Manager) version 6.14.10.3930

Description The issue allows local users to gain privileges through crafted IOCTL calls, specifically (1) 0x96002400 or (2) 0x96002404.

Recommendations For version 6.14.10.3930, consider restricting access to the IOCTL calls 0x96002400 and 0x96002404 to prevent privilege escalation until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2015-5465

Affected Products

Silicon Integrated Systems Windowsxp Display Manager

PT-2015-6929 · Silicon Integrated Systems · Silicon Integrated Systems Windowsxp Display Manager

CVE-2015-5465

Related Identifiers

Affected Products

References · 6