Skip to content
master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Kernel-exploits/EMP_NSAU.sys/
Kernel-exploits/EMP_NSAU.sys/

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 
 
 
 
 

Epson iProjection - EMP_NSAU.sys (CVE-2020-9014) corruption BSODs

POC exploits for various vulnerabilities found in the drivers associated with Epson's iProjection software

# Exploit Title: Epsons iProjection v2.30 Driver EMP_NSAU.sys Memory Corruption
# Date: 02/15/2020
# Exploit Author: FULLSHADE
# Vendor Homepage: https://epson.com
# Software Link: https://www.epson.eu/epson-projector-software
# Version: v.2.30
# Tested on: Windows 7 /  Windows 10
# CVE : CVE-2020-9014

EMP_NSAU.sys - (CVE-2020-9014)

The same three IOCTLs are found & the same vulnerable code as in the EMP_MAU.sys.

Device names:

  • \Device\EMPNSAUIO
  • \DosDevices\EMPNSAU

Disclosure Timeline

  • Fri, Feb 14, 2020: Initial vulnerability discovery
  • Fri, Feb 14, 2020: CVE request for EMP_MAU.sys was made
  • Sat, Feb 15, 2020: CVE request for EMP_NSAU.sys was made
  • Tue, Feb 18, 2020: Vendor contacted
  • Tue, Feb 18, 2020: Vendor escalates issue for support (Incident: 200218-002215)
  • Wed, Feb 19, 2020: Vendor requested more information
  • Mon, Mar 2, 2020: Vendor says they are working on it, update soon
  • Mon, Mar 10, 2020: Vendor says they will issue a patch on March 31st
  • Thr, Mar 19, 2020: Publication
  • Public disclosure occured after the 31st

Publications

  • Vendor advisory :
  • NIST advisory :
  • MITRE ATT&CK publication : CVE-2020-9014