See.sys, up to version 4.25, in SoftEther VPN Server versions 4.29 or older, allows a user to call an IOCTL specifying any kernel address to which arbitrary bytes are written to.
References
Link | Resource |
---|---|
https://downwithup.github.io/CVEPosts | Third Party Advisory |
https://github.com/SoftEtherVPN/SoftEtherVPN/tree/master/src/See | Third Party Advisory |
https://www.softether.org/9-about/News/900-SEVPN201901 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-07-29T16:28:32
Updated: 2019-10-04T14:45:57
Reserved: 2019-05-09T00:00:00
Link: CVE-2019-11868
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-07-29T17:15:11.387
Modified: 2021-08-27T15:58:35.453
Link: CVE-2019-11868
JSON object: View
Redhat Information
No data.
CWE