The MsIo64.sys and MsIo32.sys drivers in Patriot Viper RGB before 1.1 allow local users (including low integrity processes) to read and write to arbitrary memory locations, and consequently gain NT AUTHORITY\SYSTEM privileges, by mapping \Device\PhysicalMemory into the calling process via ZwOpenSection and ZwMapViewOfSection.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-11-09T17:05:16

Updated: 2024-08-05T02:02:39.775Z

Reserved: 2019-11-09T00:00:00

Link: CVE-2019-18845

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-11-09T18:15:10.950

Modified: 2024-11-21T04:33:41.950

Link: CVE-2019-18845

cve-icon Redhat

No data.