Published: 02/08/2017 Updated: 28/05/2020

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process.

Vulnerable Product	Search on Vulmon	Subscribe to Product
razer synapse 2.20.15.1104

## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## require 'msf/core/exploit/local/windows_kernel' require 'rex' require 'metasm' class MetasploitModule < Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::Local::WindowsKernel include Msf ...

A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process.

nvdnistgov/vuln/detail/CVE-2017-9769 CVE-2017-9769 A specially crafted IOCTL can be issued to the rzpnksys driver in Razer Synapse 220151104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process Reference wwwgodeyeclub/cve/2020/11/06/001html

NVD-CWE-noinfo https://warroom.securestate.com/cve-2017-9769/http://www.rapid7.com/db/modules/exploit/windows/local/razer_zwopenprocess https://www.exploit-db.com/exploits/42368/https://nvd.nist.gov https://github.com/kkent030315/CVE-2017-9769 https://www.exploit-db.com/exploits/42368/

CVE-2017-9769

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect