PT-2018-4207 · Truecrypt · Truecrypt

Published

2018-03-19

Updated

2018-04-20

CVE-2014-2884

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions TrueCrypt version 7.1a

Description The issue allows local users to bypass access restrictions and obtain sensitive information about arbitrary files. This is achieved through specific IOCTL calls, including TC IOCTL OPEN TEST or TC IOCTL GET SYSTEM DRIVE CONFIG, which are handled by the ProcessVolumeDeviceControlIrp function in Ntdriver.c.

Recommendations For TrueCrypt version 7.1a, consider restricting access to the ProcessVolumeDeviceControlIrp function until a patch is available. Avoid using the TC IOCTL OPEN TEST and TC IOCTL GET SYSTEM DRIVE CONFIG IOCTL calls in the affected API endpoint until the issue is resolved.

Fix

Improper Access Control

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284CWE-200

Related Identifiers

CVE-2014-2884

Affected Products

Truecrypt

PT-2018-4207 · Truecrypt · Truecrypt

CVE-2014-2884

Weakness Enumeration

Related Identifiers

Affected Products

References · 3