PT-2017-15002 · Tg Soft · Vir.It Explorer Lite
Published
2017-12-20
·
Updated
2018-01-03
·
CVE-2017-17796
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TG Soft Vir.IT eXplorer Lite version 8.5.65
Description
The issue allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact. This is due to the driver file VIRAGTLT.SYS not validating input values from IOCtl
0x827300A4.Recommendations
For TG Soft Vir.IT eXplorer Lite version 8.5.65, consider disabling the VIRAGTLT.SYS driver file as a temporary workaround until a patch is available. Restrict access to IOCtl
0x827300A4 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.Exploit
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Vir.It Explorer Lite