CVE-2021-42686

Name of the Vulnerable Software and Affected Versions Accops HyWorks Windows Client versions prior to 3.2.8.200

Description An Integer Overflow exists in the Accops HyWorks Windows Client, allowing local attackers to execute arbitrary code in kernel mode or cause a denial of service via specially crafted I/O Request Packets. The IOCTL Handler 0x22001B is affected, potentially leading to memory corruption and OS crash.

Recommendations For versions prior to 3.2.8.200, update to version 3.2.8.200 or later to resolve the issue. As a temporary workaround, consider restricting access to the IOCTL Handler 0x22001B to minimize the risk of exploitation.