Silicon Integrated Systems XGI WindowsXP Display Manager (aka XGI VGA Driver Manager and VGA Display Manager) 6.14.10.1090 allows local users to gain privileges via a crafted 0x96002404 IOCTL call.
Weakness
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Xgi_vga_display_manager | Sis | 6.14.10.1090 (including) | 6.14.10.1090 (including) |
Potential Mitigations
Related Attack Patterns
- https://cwe.mitre.org/data/definitions/122.html
- https://cwe.mitre.org/data/definitions/233.html
- https://cwe.mitre.org/data/definitions/58.html
References
- http://packetstormsecurity.com/files/133400/XGI-Windows-VGA-Display-Manager-Privilege-Escalation.html
- http://seclists.org/fulldisclosure/2015/Sep/2
- http://www.securityfocus.com/archive/1/archive/1/536373/100/0/threaded
- https://www.korelogic.com/Resources/Advisories/KL-001-2015-004.txt
- http://packetstormsecurity.com/files/133400/XGI-Windows-VGA-Display-Manager-Privilege-Escalation.html
- http://seclists.org/fulldisclosure/2015/Sep/2
- http://www.securityfocus.com/archive/1/archive/1/536373/100/0/threaded
- https://www.korelogic.com/Resources/Advisories/KL-001-2015-004.txt