Rollback Rx Professional Null Pointer Dereference Vulnerability in Shieldm.sys Driver
Vulnerability
A denial-of-service vulnerability has been identified in Rollback Rx Professional version 12.8.0.0. The issue arises in the driver file shieldm.sys, where a null pointer dereference is triggered by IOCTL 0x96202000. This vulnerability allows local users to cause a system crash (BSOD) and potentially other unspecified impacts. Notably, the affected driver is accessible to all users in the 'Everyone' group.
Impact
Exploitation of this vulnerability leads to a system crash (BSOD) and could potentially allow for other unspecified impacts.
Reproduction
To reproduce this vulnerability, install Rollback Rx Professional 12.8.0.0, either directly or by loading the driver with OSR Loader or using the 'sc create' command. After installation, compile the provided Proof of Concept (PoC) code, which exploits the null pointer dereference by sending a request to the vulnerable driver via the specified IOCTL. Running this PoC will result in a system crash.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.