Invia #829133: VS REVO GROUP RevoUninstaller <2.7.0 >2.5.0 Heap-based Buffer Overflowinformazioni

TitoloVS REVO GROUP RevoUninstaller <2.7.0 >2.5.0 Heap-based Buffer Overflow
DescrizioneThe IOCTL handler in RevoDetector.sys does not properly validate the length of the process name it copies before copying it into the IRP System Buffer. This results in a nonpaged pool overflow in the kernel. An attacker can easily use crafted process names to get code execution or privilege escalation as I have show in my blog post. They have patched this in the latest version after I reached out to them.
Fonte⚠️ https://vandalsuidaho-my.sharepoint.com/:w:/g/personal/higg2059_vandals_uidaho_edu/IQAMHgdfpRAkSqDsoFVswIYNAXjPVFz-admcJyl5ITzYhu0?e=4Ywwza
Utente
 Jordanhiggins (UID 98250)
Sottomissione14/05/2026 00:51 (2 mesi fa)
Moderazione14/06/2026 08:56 (1 month later)
StatoDuplicato
Voce VulDB370839 [VS Revo RevoUninstaller 2.5.x/2.6.x IOCTL RevoDetector.sys IOCtl_Handler buffer overflow]
Punti0

Might our Artificial Intelligence support you?

Check our Alexa App!