Allele Security Alert
ASA-2018-00098, CORE-2018-0007, CVE-2018-19320
Driver allow non-privileged user arbitrary ring0 read/write
GIGABYTE APP Center
AORUS GRAPHICS ENGINE
XTREME GAMING ENGINE
OC GURU II
GIGABYTE APP Center v1.05.21 and previous
AORUS GRAPHICS ENGINE v1.33 and previous
XTREME GAMING ENGINE v1.25 and previous
OC GURU II v2.08
Proof of concept
Default installation allows non-privileged user processes (even running at LOW INTEGRITY) to get a HANDLE and issue IOCTL codes to these drivers.
There is ring0 memcpy-like functionality built into GIO’s IOCTL 0xC3502808, allowing a local attacker to take complete control of the affected system.
Diego Juarez (SecureAuth) and Leandro Cuozzo (SecureAuth)
GIGABYTE Drivers Elevation of Privilege Vulnerabilities
[CORE-2018-0007] – GIGABYTE Driver Elevation of Privilege Vulnerabilities
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: February 3, 2019