vendor:
ALPS Pointing-device Driver
by:
Souhail Hammou
5.5
CVSS
MEDIUM
Denial Of Service
119
CWE
Product Name: ALPS Pointing-device Driver
Affected Version From: 10.1.101.207
Affected Version To: 10.1.101.207
Patch Exists: YES
Related CWE: CVE-2018-10828
CPE: a:alps:alps_pointing-device_driver
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: Windows
2018
Dell Touchpad – ApMsgFwd.exe Denial Of Service
ApMsgFwd.exe belonging to Dell Touchpad, ALPS Touchpad driver, ALPS pointing-device for VAIO, Thinkpad Ultranav Driver ..etc allows the current user to map and write to the 'ApMsgFwd File Mapping Object' section. ApMsgFwd.exe uses the data written to the section as arguments to functions. This causes a denial of service condition when invalid pointers are written to the mapped section.
Mitigation:
Update to the latest version of the Dell Touchpad driver.
