VULHUB ™

It is reported that the INCA nProtect Gameguard kernel driver provides functionality that may impact the security model of a Windows NT/2000/XP computer. Reports indicate the affected kernel driver provides functionality to modify the I/O permission mask of the process that invokes the affected driver to allow for unrestricted I/O operations in unprivileged user-mode. An unprivileged attacker that has obtainined local interactive access to a computer that is running the vulnerable kernel mode driver may exploit this to make arbitrary read and write operations to a specified device.

It is reported that the INCA nProtect Gameguard kernel driver provides functionality that may impact the security model of a Windows NT/2000/XP computer. Reports indicate the affected kernel driver provides functionality to modify the I/O permission mask of the process that invokes the affected driver to allow for unrestricted I/O operations in unprivileged user-mode. An unprivileged attacker that has obtainined local interactive access to a computer that is running the vulnerable kernel mode driver may exploit this to make arbitrary read and write operations to a specified device.