Skip to content
master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
WindowsKernelVuln/CVE-2023-1492/
WindowsKernelVuln/CVE-2023-1492/

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.

Max Secure Anti Virus Plus, MaxProc64.sys, DoS

Vulnerability Info

Version

Impact

Denial of Service

Description

From IoControlCode 0x220019, a normal user can cause DoS due to the lack of validating SystemBuffer.

Reproduce

In the attached file DoS.zip, there are DoS.exe, DoS.cpp, MaxAVPlusDM.exe, and MaxProc64.sys. DoS.exe is the PoC to cause BSOD where MaxAVPlusDM.exe which contains the vulnerable driver MaxProc64.sys is installed, and DoS.cpp is the source code of DoS.exe. To reproduce the issue, just install MaxAVPlusDM.exe and execute DoS.exe. It is expected that the system will crash (BSOD) once DoS.exe is executed. Password for attachment: DoS https://drive.google.com/file/d/1G_Szy4kCrZU-whGbVcxpdE1yKf5Vxqq3/view?usp=sharing