Описание
Amazon Amazon WorkSpaces agent is affected by Integer Overflow. IOCTL Handler 0x22001B in the Amazon WorkSpaces agent below v1.0.1.1537 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet.
Ссылки
- ExploitTechnical DescriptionThird Party Advisory
- ExploitTechnical DescriptionThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.1.1537 (исключая)
cpe:2.3:a:amazon:workspaces:*:*:*:*:*:*:*:*
EPSS
Процентиль: 34%
0.00136
Низкий
8.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-190
Связанные уязвимости
github
около 4 лет назад
Amazon Amazon WorkSpaces agent is affected by Integer Overflow. IOCTL Handler 0x22001B in the Amazon WorkSpaces agent below v1.0.1.1537 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet.
EPSS
Процентиль: 34%
0.00136
Низкий
8.8 High
CVSS3
7.2 High
CVSS2
Дефекты
CWE-190