Skip to content
master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
WindowsKernelVuln/CVE-2023-1641/
WindowsKernelVuln/CVE-2023-1641/

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
bin
 
 
 
 

IObit Malware Fighter, ObCallbackProcess.sys, DoS

Vulnerability Info

Version

Impact

Denial of Service

Description

From IoControlCode 0x222018, there is no proper validation of the length of user-supplied data and pass it as the second parameter of memcpy, which will cause BSOD when a user gives null input.

Reproduce

In the attached file DoS2.zip, there are DoS2.exe, DoS2.cpp, iobit_malware_fighter_setup.exe, and ObCallbackProcess.sys. DoS2.exe is the PoC to cause DoS where iobit_malware_fighter_setup.exe which contains the vulnerable driver ObCallbackProcess.sys is installed, and DoS2.cpp is the source code of DoS2.exe. To reproduce the issue, install iobit_malware_fighter_setup.exe and execute DoS2.exe. It is expected that the system will crash (BSOD) once DoS2.exe is executed. Password for attachment: DoS2 https://drive.google.com/file/d/1ncqfaxSdeu-mGVAOnYxqxYtyyFZClHBF/view?usp=sharing