An issue exists in PassMark BurnInTest up to and including 9.1, OSForensics up to and including 7.1, and PerformanceTest up to and including 10. The driver's IOCTL request handler attempts to copy the input buffer onto the stack without checking its size and can cause a buffer overflow. This could lead to arbitrary Ring-0 code execution and escalation of privileges. This affects DirectIo32.sys and DirectIo64.sys.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
passmark burnintest |
||
passmark osforensics |
||
passmark performancetest |