CVE-2024-36056 Information
May 29, 2024
cve
Description
Hw64.sys in Marvin Test HW.exe before 5.0.5.0 allows unprivileged user-mode processes to arbitrarily map physical memory via IOCTL 0x9c406490 (for IoAllocateMdl MmBuildMdlForNonPagedPool and MmMapLockedPages) leading to NT AUTHORITY\SYSTEM privilege escalation.
Reference
https://www.marvintest.com/Downloads.aspx?prodId=12&search=package https://www.marvintest.com/KnowledgeBase/KBArticle.aspx?ID=362
Share on: