Flaw in Intel PMx driver gives 'near-omnipotent control over a victim device'

[correlate]

Level 18
Thread author
Top Poster
Well-known
May 4, 2019
801
Intel released an updated version of pmxdrvx64.sys and pmxdrv.sys; however, patching might take a while.
Intel released today an updated version of its PMx driver to fix a set of vulnerabilities that could grant attackers "near-omnipotent control over a victim device."
The vulnerabilities were discovered earlier this year by researchers from Eclypsium, as part of a mammoth project that looked at the overall state of Windows kernel driver security.
Over the summer, Eclypsium researchers presented their findings at the DEF CON 27 security conference in Las Vegas. At the time, they disclosed over 40 vulnerabilities in kernel drivers from 20 different hardware vendors.
They only made public details about 39 kernel drivers, holding back on disclosing a few issues that had yet to be fixed.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top