IOCTL 0x120404 in KfeCo10X64.sys, part of Rivet Killer Control Center, fails to validate an offset passed as a parameter during a memory operation, leading to an out-of-bounds read that can be used as part of a chain to escalate privileges. This is not the same issue as FEYE-2019-0008.
Low - Arbitrary Read
Low - Attacker must have admin privileges
CVE-2019-15663
Proof of concept and technical details are provided in the PoC folder.
This issue was fixed in October 2019: https://support.killernetworking.com/downloads/ReleaseNotes/KillerSoftware_Release_Notes_2.1.1352.pdf
Dhanesh Kizhakkinan
- 7 July 2019 - Contacted vendor
- 26 August 2019 - Second attempt to contact vendor
- 26 August 2019 - Vendor responded with fix
- 13 October 2019 - Fix published
Provided as part of poc.cpp