CVE-2020-9453

Name of the Vulnerable Software and Affected Versions: Epson iProjection version 2.30

Description: The driver file EMP MPAU.sys in Epson iProjection allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9C402406 and IOCtl 0x9C40240A. This affects DeviceEMPMPAUIO and DosDevicesEMPMPAU.

Recommendations: For Epson iProjection version 2.30, consider disabling the EMP MPAU.sys driver file as a temporary workaround until a patch is available. Restrict access to the affected devices DeviceEMPMPAUIO and DosDevicesEMPMPAU to minimize the risk of exploitation. Avoid using the IOCtl codes 0x9C402406 and 0x9C40240A in the affected driver file until the issue is resolved.