CVE-2020-15479

An issue was discovered in PassMark BurnInTest through 9.1, OSForensics through 7.1, and PerformanceTest through 10. The driver's IOCTL request handler attempts to copy the input buffer onto the stack without checking its size and can cause a buffer overflow. This could lead to arbitrary Ring-0 code execution and escalation of privileges. This affects DirectIo32.sys and DirectIo64.sys.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:passmark:burnintest:*:*:*:*:*:*:*:*
cpe:2.3:a:passmark:osforensics:*:*:*:*:*:*:*:*
cpe:2.3:a:passmark:performancetest:*:*:*:*:*:*:*:*

Information

Published : 2020-08-07 14:15

Updated : 2020-08-12 09:07


NVD link : CVE-2020-15479

Mitre link : CVE-2020-15479


JSON object : View

CWE
CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Advertisement

dedicated server usa

Products Affected

passmark

  • burnintest
  • performancetest
  • osforensics