ID CVE-2017-6178
Summary The IofCallDriver function in USBPcap 1.1.0.0 allows local users to gain privileges via a crafted 0x00090028 IOCTL call, which triggers a NULL pointer dereference.
References
Vulnerable Configurations
  • cpe:2.3:a:usbpcap_project:usbpcap:1.1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:usbpcap_project:usbpcap:1.1.0.0:*:*:*:*:*:*:*
CVSS
Base: 4.6 (as of 13-03-2019 - 18:59)
Impact:
Exploitability:
CWE CWE-476
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:L/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 97026
exploit-db 41542
misc http://packetstormsecurity.com/files/141526/USBPcap-1.1.0.0-Privilege-Escalation.html
Last major update 13-03-2019 - 18:59
Published 20-03-2017 - 16:59
Back to Top