PT-2018-18765 · Microsoft · Windows Master
Published
2018-03-25
·
Updated
2018-03-30
·
CVE-2018-8995
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Windows Master (aka Windows Optimization Master) version 7.99.13.604
Description
The issue is related to the driver file WoptiHWDetect.SYS, which does not validate input values from IOCtl
0xf1002002. This can allow local users to cause a denial of service (BSOD) or possibly have other unspecified impacts.Recommendations
For Windows Master (aka Windows Optimization Master) version 7.99.13.604, consider disabling the WoptiHWDetect.SYS driver file as a temporary workaround to minimize the risk of exploitation.
Exploit
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows Master