Realtek NDIS driver rt640x64.sys, file version 10.1.505.2015, fails to do any size checking on an input buffer from user space, which the driver assumes has a size greater than zero bytes. To exploit this vulnerability, an attacker must send an IRP with a system buffer size of 0.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
realtek ndis 10.1.505.2015 |