DV Hardware - bringing you the hottest news about processors, graphics cards, Intel, AMD, NVIDIA, hardware and technology!
   Home | News submit | News Archives | Reviews | Articles | Howto's | Advertise
 
DarkVision Hardware - Daily tech news
August 23, 2019 
Main Menu
Home
Info
News archives
Articles
Howto
Reviews
 

Who's Online
There are currently 61 people online.

 

Latest Reviews
Ewin Racing Flash gaming chair
Arctic BioniX F120 and F140 fans
Jaybird Freedom 2 wireless sport headphones
Ewin Racing Champion gaming chair
Zowie P-TF Rough mousepad
Zowie FK mouse
BitFenix Ronin case
Ozone Rage ST headset
 

Follow us
RSS
 

Over 40 drivers from popular hardware makers contain security vulnerabilities

Posted on Monday, August 12 2019 @ 15:00:32 CEST by


Over at the DEF CON event in Las Vegas, security researchers from Eclypsium disclosed that they discovered that over 40 Windows drivers contain vulnerabilities that can result in escalation of privilege. The list of affected companies includes ASRock, ASUS, Biostar, EVGA, Gigabyte, Huawei, Intel, MSI, NVIDIA, Phoenix Technologies, Realtek, SuperMicro, and Toshiba.

Eclypsium also highlights that all of these drivers have been certified by Microsoft.
Our analysis found that the problem of insecure drivers is widespread, affecting more than 40 drivers from at least 20 different vendors – including every major BIOS vendor, as well as hardware vendors like ASUS, Toshiba, NVIDIA, and Huawei. However, the widespread nature of these vulnerabilities highlights a more fundamental issue – all the vulnerable drivers we discovered have been certified by Microsoft. Since the presence of a vulnerable driver on a device can provide a user (or attacker) with improperly elevated privileges, we have engaged Microsoft to support solutions to better protect against this class of vulnerabilities, such as blacklisting known bad drivers.
Malicious software could use these vulnerabilities to gain kernel privileges. This means an attacker first needs to find a different vector to gain access to your system. Microsoft will be taking measures to block blacklisted drivers that are reported to them.



 



 

DV Hardware - Privacy statement
All logos and trademarks are property of their respective owner.
The comments are property of their posters, all the rest © 2002-2019 DM Media Group bvba