CVE-2017-9769 PoC — Razer Synapse rzpnk.sys驱动程序安全漏洞

Source

https://github.com/kkent030315/CVE-2017-9769

Associated Vulnerability

Title:Razer Synapse rzpnk.sys驱动程序安全漏洞 (CVE-2017-9769)
Description:Razer Synapse是美国Razer公司的一款Razer设备配置软件。rzpnk.sys driver是其中的一个Razer覆盖驱动程序。 Razer Synapse 2.20.15.1104版本中的rzpnk.sys驱动程序存在安全漏洞。攻击者可借助特制的IOCTL利用该漏洞提升权限。

Description

A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process.

Readme

https://nvd.nist.gov/vuln/detail/CVE-2017-9769

# CVE-2017-9769
A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process.

# Reference

https://www.godeye.club/cve/2020/11/06/001.html

File Snapshot


 [4.0K]  /data/pocs/626ec9ae8040246a1a983b04e9fb7076e5cc097d
├── [1.4K]  CVE-2017-9769.sln
├── [1.0K]  LICENSE
├── [ 311]  README.md
└── [4.0K]  src
    ├── [7.6K]  CVE-2017-9769.vcxproj
    ├── [ 964]  CVE-2017-9769.vcxproj.filters
    ├── [1.5K]  file_utils.cpp
    ├── [1.3K]  file_utils.hpp
    ├── [1.4K]  logger.hpp
    ├── [2.4K]  main.cpp
    ├── [7.1K]  nt.hpp
    ├── [843K]  raw_driver.hpp
    ├── [4.2K]  razer.cpp
    ├── [2.0K]  razer.hpp
    ├── [5.2K]  service_utils.cpp
    ├── [1.7K]  service_utils.hpp
    ├── [2.1K]  utils.cpp
    └── [1.3K]  utils.hpp

1 directory, 17 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!