PT-2020-11238 · Amd · Amd Ati Diagnostics Hardware Abstraction Sys/Overclocking Utility

Ryan Warns

Published

2020-05-18

Updated

2021-07-21

CVE-2019-7246

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions AMD ATI Diagnostics Hardware Abstraction Sys/Overclocking Utility version 5.11.9.0

Description An issue was discovered in the atillk64.sys driver, which exposes a wrmsr instruction and does not properly filter the Model Specific Register (MSR). This allows arbitrary MSR writes, leading to Ring-0 code execution and escalation of privileges.

Recommendations For version 5.11.9.0, consider disabling the atillk64.sys driver until a patch is available to prevent arbitrary MSR writes and potential Ring-0 code execution. Restrict access to the vulnerable driver to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-7246

Affected Products

Amd Ati Diagnostics Hardware Abstraction Sys/Overclocking Utility

PT-2020-11238 · Amd · Amd Ati Diagnostics Hardware Abstraction Sys/Overclocking Utility

CVE-2019-7246

Related Identifiers

Affected Products

References · 5