Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The NT kernel-mode driver (aka pstrip.sys) 5.0.1.1 and earlier in EnTech Taiwan PowerStrip 3.84 and earlier allows local users to gain privileges via certain IRP parameters in an IOCTL request to \Device\Powerstrip1 that overwrites portions of memory.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PowerStrip pstrip.sys驱动本地权限提升漏洞
Vulnerability Description
PowerStrip是功能强大的显卡、屏幕功能配置工具。 PowerStrip的pstrip.sys驱动允许不可信任的用户态代码传送内核地址参数。由于没有正确地验证Irp参数,攻击者可以使用有漏洞的IOCTL(0x800020A8)用常数LONGLONG值0x00覆盖任意内存,导致执行任意内核态代码。一旦加载,所有用户都可以访问有漏洞的内核模块。在引导系统后该内核模块会一直处于加载状态,重启后会自动加载驱动。
CVSS Information
N/A
Vulnerability Type
N/A