CVE-2020-9014

Name of the Vulnerable Software and Affected Versions: Epson iProjection version 2.30

Description: The driver file EMP NSAU.sys in Epson iProjection allows local users to cause a denial of service (BSOD) via crafted input to the virtual audio device driver with IOCTL 0x9C402402, 0x9C402406, or 0x9C40240A. The devices DeviceEMPNSAUIO and DosDevicesEMPNSAU are similarly affected.

Recommendations: For Epson iProjection version 2.30, consider disabling the virtual audio device driver as a temporary workaround until a patch is available. Restrict access to the driver file EMP NSAU.sys to minimize the risk of exploitation. Avoid using the IOCTL codes 0x9C402402, 0x9C402406, or 0x9C40240A in the affected driver until the issue is resolved.