Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Velocidex WinPmem Out of Bounds Write Vulnerability
Vulnerability Description
Velocidex WinPmem versions below 4.1 suffer from an Out of Bounds Write vulnerability. By using an IO Control, a user space program can trick the driver into writing a 0 into any chosen memory location. In conjunction with information leakage from the WinPmem driver, attackers can discover the location in memory for the g_CiOptions global symbol. This can be leveraged to disable signed driver enforcement on the target system - allowing attackers to load unsigned drivers.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
WinPmem 安全漏洞
Vulnerability Description
WinPmem是Velocidex开源的一个物理内存获取工具。 WinPmem 4.1之前版本存在安全漏洞,该漏洞源于inPmem 驱动程序存在信息泄露。攻击者利用该漏洞可以发现 g_CiOptions 全局符号在内存中的位置。
CVSS Information
N/A
Vulnerability Type
N/A