Epson iProjection - EMP_NSAU.sys (CVE-2020-9014) corruption BSODs
POC exploits for various vulnerabilities found in the drivers associated with Epson's iProjection software
# Exploit Title: Epsons iProjection v2.30 Driver EMP_NSAU.sys Memory Corruption
# Date: 02/15/2020
# Exploit Author: FULLSHADE
# Vendor Homepage: https://epson.com
# Software Link: https://www.epson.eu/epson-projector-software
# Version: v.2.30
# Tested on: Windows 7 / Windows 10
# CVE : CVE-2020-9014
EMP_NSAU.sys - (CVE-2020-9014)
The same three IOCTLs are found & the same vulnerable code as in the EMP_MAU.sys.
Device names:
- \Device\EMPNSAUIO
- \DosDevices\EMPNSAU
Disclosure Timeline
- Fri, Feb 14, 2020: Initial vulnerability discovery
- Fri, Feb 14, 2020: CVE request for EMP_MAU.sys was made
- Sat, Feb 15, 2020: CVE request for EMP_NSAU.sys was made
- Tue, Feb 18, 2020: Vendor contacted
- Tue, Feb 18, 2020: Vendor escalates issue for support (Incident: 200218-002215)
- Wed, Feb 19, 2020: Vendor requested more information
- Mon, Mar 2, 2020: Vendor says they are working on it, update soon
- Mon, Mar 10, 2020: Vendor says they will issue a patch on March 31st
- Thr, Mar 19, 2020: Publication
- Public disclosure occured after the 31st
Publications
- Vendor advisory :
- NIST advisory :
- MITRE ATT&CK publication : CVE-2020-9014