जमा करें #835608: AOMEI AOMEI Dynamic Disk Manager Kernel Driver ddmdrv.sys 10.10.1 Local Privilege Escapationजानकारी

शीर्षकAOMEI AOMEI Dynamic Disk Manager Kernel Driver ddmdrv.sys 10.10.1 Local Privilege Escapation
विवरणddmdrv.sys, shipped with AOMEI Partition Assistant Standard 10.10.1, exposes the \\.\ddmwrt device to a standard local user and forwards raw read/write requests to the underlying disk stack. The forwarded requests are issued by the kernel driver, so the standard Windows access check that prevents a non-administrator from opening \\.\PhysicalDriveN is bypassed. In a controlled proof, a standard Medium Integrity user could not open a temporary VHD-backed physical disk directly. The same user then wrote a unique 512-byte marker to that disk through \\.\ddmwrt\Partition0\DISK1, read it back through the driver, and an Administrator confirmed the marker by directly reading \\.\PhysicalDrive1 at the same offset. An unprivileged user can exploit arbitrary read/write primitives over protected file resources to achieve local privilege escalation.
स्रोत⚠️ https://winslow1984.com/books/cve-collection/page/aomei-dynamic-disk-manager-10101-kernel-driver-ddmdrvsys-local-privilege-escalation
उपयोगकर्ता
 winslow1984 (UID 79140)
सबमिशन22/05/2026 07:32 AM (2 महीनों पहले)
संयम20/06/2026 11:36 AM (29 days later)
स्थितिस्वीकृत
VulDB प्रविष्टि372520 [AOMEI Dynamic Disk Manager तक 10.10.1 Kernel Driver ddmdrv.sys अधिकार वृद्धि]
अंक20

Want to know what is going to be exploited?

We predict KEV entries!