| タイトル | Vuln: Webcam for Remote Desktop, ftwebcam.sys, DoS3 |
|---|
| 説明 | Version: Webcam for Remote Desktop 2.8.42, ftwebcam.sys x.x.x.x, DoS
https://www.fabulatech.com/webcam-for-remote-desktop.html
Impact: Denial of Service
Description: From IoControlCode 0x222018, a normal user can cause DoS due to the lack of validating SystemBuffer.
Reproduce: In the attached file DoS3.zip, there are DoS3.exe, DoS.3cpp, webcam-for-remote-desktop-server-64bit.msi, and ftwebcam.sys. DoS3.exe is the PoC to cause BSOD where webcam-for-remote-desktop-server-64bit.msi contains the vulnerable driver ftwebcam.sys installed, and DoS3.cpp is the source code of DoS3.exe. To reproduce the issue, install webcam-for-remote-desktop-server-64bit.msi and execute DoS3.exe. It is expected that the system will crash (BSOD) once DoS3.exe is executed. Password for attachment: DoS3
https://drive.google.com/file/d/1_gVQtfbpywhh8Z6g4Y03Qg7UT3Aobz2e/view?usp=sharing |
|---|
| ソース | ⚠️ https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/unassigned8 |
|---|
| ユーザー | Zeze7w (UID 40823) |
|---|
| 送信 | 2023年02月26日 17:01 (3 年 ago) |
|---|
| モデレーション | 2023年03月06日 08:09 (8 days later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 222360 [FabulaTech Webcam for Remote Desktop 2.8.42 IoControlCode ftwebcam.sys 0x222018 サービス拒否] |
|---|
| ポイント | 20 |
|---|