An issue in Binalyze IREC.sys v.3.11.0 and before allows a local attacker to execute arbitrary code and escalate privileges via the fun_1400084d0 function in IREC.sys driver.
References
Link | Resource |
---|---|
https://blog.dru1d.ninja/windows-driver-exploit-development-irec-sys-a5eb45093945 | Exploit Third Party Advisory |
https://gist.github.com/dru1d-foofus/1af21179f253879f101c3a8d4f718bf0 | Exploit Third Party Advisory |
https://github.com/magicsword-io/LOLDrivers/blob/main/yaml/d74fdf19-b4b0-4ec2-9c29-4213b064138b.yml | Exploit Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-28T00:00:00
Updated: 2023-09-28T02:46:53.923527
Reserved: 2023-08-30T00:00:00
Link: CVE-2023-41444
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-09-28T03:15:11.193
Modified: 2023-10-03T20:44:50.587
Link: CVE-2023-41444
JSON object: View
Redhat Information
No data.
CWE