N/A

Speedfan.sys in Alfredo Milani Comparetti SpeedFan 4.33, when used on Microsoft Windows Vista x64, allows local users to read or write arbitrary MSRs, and gain privileges and load unsigned drivers, via the (1) IOCTL_RDMSR 0x9C402438 and (2) IOCTL_WRMSR 0x9C40243C IOCTLs to \Device\speedfan, as demonstrated by an IOCTL_WRMSR action on MSR_LSTAR.

N/A

N/A

SpeedFan Speedfan.sys驱动本地权限提升漏洞

SpeedFan是一个监视电脑风扇速度及温度的软件。 SpeedFan的驱动实现存在漏洞，本地攻击者可能利用此漏洞提升自己到系统权限。 Vista平台上的SpeedFan安装了Vista x64的签名驱动Speedfan.sys，该驱动中存在安全漏洞： IOCTL : 0x9c40243C cmp dword ptr [rdx+8], 8 jb short loc_11171 cmp dword ptr [rdx+10h], 0Ch jb short loc_11171 mov r8d, [rsi+4]

N/A

N/A