IOCTL 0x120004 in KfeCo10X64.sys, part of Rivet Killer Control Center, fails to validate parameters leading to a stack-based buffer overflow which can lead to code execution and elevation of privileges.
High - Arbitrary Ring 0 code execution
Low - Attacker must have admin privileges
CVE-2019-15661
Proof of concept and technical details are provided in the PoC folder.
This issue was fixed in October 2019: https://support.killernetworking.com/downloads/ReleaseNotes/KillerSoftware_Release_Notes_2.1.1352.pdf
Dhanesh Kizhakkinan
- 7 July 2019 - Contacted vendor
- 26 August 2019 - Second attempt to contact vendor
- 26 August 2019 - Vendor responded with fix
- 13 October 2019 - Fix published
Provided as part of poc.cpp