Back to search
CVE-2020-12138
Published: Apr 27, 2020
Modified: Aug 4, 2024
PUBLISHED
Description
AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process. This could enable low-privileged users to achieve NT AUTHORITY\SYSTEM privileges via a DeviceIoControl call associated with MmMapIoSpace, IoAllocateMdl, MmBuildMdlForNonPagedPool, or MmMapLockedPages.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://eclypsium.com/2019/11/12/mother-of-all-drivers/
x_refsource_MISC
https://h0mbre.github.io/atillk64_exploit/
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now