| Titel | Watchdog Anti-Virus, wsdk-driver.sys, DoS |
|---|
| Beschreibung | Version: Watchdog Anti-Virus x.x.x.x, wsdk-driver.sys x.x.x.x, DoS
https://watchdog.dev/solutions/anti-virus/
Impact: Denial of Service
Description: From IoControlCode 0x80002004 and 0x80002008, a normal user can cause DoS due to the lack of null terminated before passing as SourceString to RtlInitUnicodeString.
Reproduce: In the attached file DoS.zip, there are DoS.exe, DoS.cpp, WAV_Setup.exe, and wsdk-driver.sys. DoS.exe is the PoC to cause DoS where WAV_Setup.exe which contains the vulnerable driver wsdk-driver.sys is installed, and DoS.cpp is the source code of DoS.exe. To reproduce the issue, just install WAV_Setup.exe and execute DoS.exe. It is expected that the system will crash (BSOD) once DoS.exe is executed. Password for attachment: DoS
https://drive.google.com/file/d/1zjK_DMjHz41RMpfa0iLQ4GXKQwEr4z2T/view?usp=sharing |
|---|
| Quelle | ⚠️ https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/unassigned13 |
|---|
| Benutzer | Zeze7w (UID 40823) |
|---|
| Einreichung | 07.03.2023 17:16 (vor 3 Jahren) |
|---|
| Moderieren | 17.03.2023 07:37 (10 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 223291 [Watchdog Anti-Virus 1.4.214.0 IoControlCode wsdk-driver.sys 0x80002004/0x80002008 Denial of Service] |
|---|
| Punkte | 20 |
|---|