CVE-2021-42996

December 9, 2021

Donglify is affected by Integer Overflow. IOCTL Handler 0x22001B in the Donglify above 1.0.12309 below 1.7.14110 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet.

Summary:

Donglify is affected by Integer Overflow. IOCTL Handler 0x22001B in the Donglify above 1.0.12309 below 1.7.14110 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet.

Reference Links(if available):

  • https://www.sentinelone.com/labs/usb-over-ethernet-multiple-privilege-escalation-vulnerabilities-in-aws-and-other-major-cloud-services/

  • CVSS Score (if available)

    v2: / HIGH

    v3: /

    Links to Exploits(if available)

  • You may have missed

    hackerone

    HackerOne Bug Bounty Disclosure: overwrite-any-file-of-the-web-server-goedix

    November 5, 2024
    hackerone

    HackerOne Bug Bounty Disclosure: open-redirect-via-redirect-to-parameter-in-tumblr-com-shivangmauryaa

    November 5, 2024
    image

    [EMBARGO] – Ransomware Victim: mh-m[.]org

    November 5, 2024
    image

    [BIANLIAN] – Ransomware Victim: Falco Sult

    November 5, 2024
    image

    [INCRANSOM] – Ransomware Victim: Webb Institute

    November 5, 2024