| タイトル | Jianming Antivirus, kvcore.sys, DoS2 |
|---|
| 説明 | Version: Jianming Antivirus 16.2.2022.418, kvcore.sys x.x.x.x
https://www.jiangmin.com/plus/list.php?tid=65
Impact: Denial of Service
Description: From IoControlCode 0x222010, a normal user can cause DoS due to null pointer dereference on a local variable.
Reproduce: In the attached file DoS2.zip, there are DoS2.exe, DoS2.cpp, JMV21Web20220419.exe, and kvcore.sys. DoS2.exe is the PoC to cause BSOD where JMV21Web20220419.exe contains the vulnerable driver kvcore.sys installed, and DoS2.cpp is the source code of DoS2.exe. To reproduce the issue, install JMV21Web20220419.exe and execute DoS2.exe. It is expected that the system will crash (BSOD) once DoS2.exe is executed. Password for attachment: DoS2
https://drive.google.com/file/d/1Div9mElTdsluLrU2etziLYqmXcqQFj1j/view?usp=sharing |
|---|
| ソース | ⚠️ https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/unassigned30 |
|---|
| ユーザー | Zeze7w (UID 40823) |
|---|
| 送信 | 2023年03月24日 09:52 (3 年 ago) |
|---|
| モデレーション | 2023年03月25日 11:06 (1 day later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 224013 [JiangMin Antivirus 16.2.2022.418 IOCTL kvcore.sys 0x222010 サービス拒否] |
|---|
| ポイント | 20 |
|---|