Intel USB 3.0 eXtensible Host Controller Driver CVE-2018-3700 Local Code Injection Vulnerability
BID:107073
CVE-2018-3700 |Info
Intel USB 3.0 eXtensible Host Controller Driver CVE-2018-3700 Local Code Injection Vulnerability
| Bugtraq ID: | 107073 |
| Class: | Input Validation Error |
| CVE: |
CVE-2018-3700 |
| Remote: | No |
| Local: | Yes |
| Published: | Feb 12 2019 12:00AM |
| Updated: | Feb 12 2019 12:00AM |
| Credit: | Marius Gabriel Mihai. |
| Vulnerable: |
Intel USB 3.0 eXtensible host Controller Driver 1.0.10.255 |
| Not Vulnerable: |
Intel USB 3.0 eXtensible host Controller Driver 5.0.4.43v2 |
Discussion
Intel USB 3.0 eXtensible Host Controller Driver CVE-2018-3700 Local Code Injection Vulnerability
Intel USB 3.0 eXtensible Host Controller Driver is prone to a local code-injection vulnerability.
An attacker can exploit this issue to inject and execute arbitrary code in the context of the affected application.
Intel USB 3.0 eXtensible Host Controller Driver versions for Microsoft Windows 7 prior to 5.0.4.43v2 are vulnerable.
Intel USB 3.0 eXtensible Host Controller Driver is prone to a local code-injection vulnerability.
An attacker can exploit this issue to inject and execute arbitrary code in the context of the affected application.
Intel USB 3.0 eXtensible Host Controller Driver versions for Microsoft Windows 7 prior to 5.0.4.43v2 are vulnerable.
Exploit / POC
Intel USB 3.0 eXtensible Host Controller Driver CVE-2018-3700 Local Code Injection Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Intel USB 3.0 eXtensible Host Controller Driver CVE-2018-3700 Local Code Injection Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Intel USB 3.0 eXtensible Host Controller Driver CVE-2018-3700 Local Code Injection Vulnerability
References:
References: