Submit #829133: VS REVO GROUP RevoUninstaller <2.7.0 >2.5.0 Heap-based Buffer Overflowinfo

TitelVS REVO GROUP RevoUninstaller <2.7.0 >2.5.0 Heap-based Buffer Overflow
BeschreibungThe IOCTL handler in RevoDetector.sys does not properly validate the length of the process name it copies before copying it into the IRP System Buffer. This results in a nonpaged pool overflow in the kernel. An attacker can easily use crafted process names to get code execution or privilege escalation as I have show in my blog post. They have patched this in the latest version after I reached out to them.
Quelle⚠️ https://vandalsuidaho-my.sharepoint.com/:w:/g/personal/higg2059_vandals_uidaho_edu/IQAMHgdfpRAkSqDsoFVswIYNAXjPVFz-admcJyl5ITzYhu0?e=4Ywwza
Benutzer
 Jordanhiggins (UID 98250)
Einreichung14.05.2026 00:51 (vor 2 Monaten)
Moderieren14.06.2026 08:56 (1 month later)
StatusDuplikat
VulDB Eintrag370839 [VS Revo RevoUninstaller 2.5.x/2.6.x IOCTL RevoDetector.sys IOCtl_Handler Pufferüberlauf]
Punkte0

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!