PT-2017-13382 · Netdecision · Winring0X32.Sys+1

Peter Baris

·

Published

2017-09-19

·

Updated

2019-10-03

·

CVE-2017-14311

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions NetDecision version 5.8.2
Description The issue allows local users to gain privileges through a crafted 0x9C402088 IOCTL call to the Winring0x32.sys driver.
Recommendations For NetDecision version 5.8.2, consider restricting access to the Winring0x32.sys driver until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2017-14311

Affected Products

Netdecision
Winring0X32.Sys