Skip to content

rjt-gupta/CVE-2021-29337

main
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 

CVE-2021-29337 - Privilege Escalation in MODAPI.sys (MSI Dragon Center)

General

  • Affected Product: MSI Dragon Center
  • Affected Version: 2.0.104.0
  • CVE MITRE

Description

A vulnerable kernel driver MODAPI.sys in dragon center exposes IOCTL 0x9C406104 which allows low-privileged users to interact directly with physical memory by calling one of several driver routines (MmMapIoSpace) that map physical memory into the virtual address space.

Sending valid input and output buffers via DeviceIoControl allows arbitrary manipulation of the kernel memory in the latest Windows 10 depicting user-mode data being passed to the MmMapIoSpace routine. This vulnerability could possibly allow local privilege escalation to NT AUTHORITY\SYSTEM.

Inspiration from Legends

About

CVE-2021-29337 - Privilege Escalation in MODAPI.sys (MSI Dragon Center)

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages