header-logo
Suggest Exploit
vendor:
mks_vir
by:
alex ntinternals org
7.2
CVSS
HIGH
Local Privilege Escalation
264
CWE
Product Name: mks_vir
Affected Version From: mks_vir 9 BETA < 1.2.0.0 - build 297
Affected Version To: mks_vir 9 BETA < 1.2.0.0 - build 297
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows 2000/XP/2003
2009

MKS_VIR (mksmonen.sys) Privilege Escalation Vulnerability

The driver contains a vulnerability that allows local users to gain elevated privileges. The vulnerability is caused due to an error in the driver when handling IOCTL 0x80102044. A local user can exploit this vulnerability to gain elevated privileges on the system.

Mitigation:

Update to the latest version of MKS_VIR.
Source

Exploit-DB raw data:

////////////////////////////////////////////////////////////////////////////////////
// +----------------------------------------------------------------------------+ //
// |                                                                            | //
// | MKS Sp. z o. o. - http://www.mks.com.pl/                                   | //
// |                                                                            | //
// | Affected Software:                                                         | //
// | mks_vir 9 BETA < 1.2.0.0 - build 297                                       | //
// |                                                                            | //
// | Affected Driver:                                                           | //
// | mksmonen.sys                                                               | //
// |                                                                            | //
// | Local Privilege Escalation Exploit                                         | //
// | For Educational Purposes Only !                                            | //
// |                                                                            | //
// +----------------------------------------------------------------------------+ //
// |                                                                            | //
// | NT Internals - http://www.ntinternals.org/                                 | //
// | alex ntinternals org                                                       | //
// | 07 March 2009                                                              | //
// |                                                                            | //
// | References:                                                                | //
// | mks_vir (mksmonen.sys) Privilege Escalation Vulnerability                  | //
// | NTIADV0809 - http://www.ntinternals.org/ntiadv0809/ntiadv0809.html         | //
// |                                                                            | //
// | Exploiting Common Flaws in Drivers                                         | //
// | Ruben Santamarta - http://www.reversemode.com/                             | //
// |                                                                            | //
// +----------------------------------------------------------------------------+ //
////////////////////////////////////////////////////////////////////////////////////

Exploit:
http://ntinternals.org/ntiadv0809/MksMonEn_Exp.zip
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/8175.zip (2009-MksMonEn_Exp.zip)


Advisory:
http://ntinternals.org/ntiadv0809/ntiadv0809.html

# milw0rm.com [2009-03-09]

Navigation

Suggest Exploit

Services By CQR