Main
Vulnerability Database
Exploits
ID:5096 - Exploit for Out-of-bounds write in Vir.IT eXplorer - CVE-2017-16237
ID:5096 - Exploit for Out-of-bounds write in Vir.IT eXplorer - CVE-2017-16237
Published: January 29, 2021
Vulnerability identifier: #VU50129
Vulnerability risk: Low
CVE-ID: CVE-2017-16237
CWE-ID: CWE-787
Exploitation vector: Local access
Vulnerable software:
Vir.IT eXplorer
Vir.IT eXplorer
Link to public exploit:
Vulnerability description
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a boundary within the 0x8273007C IOCTL in Viragtlt.sys and Viraglt64.sys system drivers. A local user can run a specially crafted program on the system, trigger an out-of-bounds write and execute arbitrary code on the system with elevated privileges.
The vulnerability exists due to a boundary within the 0x8273007C IOCTL in Viragtlt.sys and Viraglt64.sys system drivers. A local user can run a specially crafted program on the system, trigger an out-of-bounds write and execute arbitrary code on the system with elevated privileges.
Remediation
Install updates from vendor's website.