6 Replies Latest reply on Nov 8, 2016 4:22 PM by bfrisan

    CVE-2015-2291 Intel Network Adapter Diagnostic Driver IOCTL DoS

    langejoel

      A vulnerability in iqvw32.sys and iqvw64e.sys drivers has been discovered in the Intel Network Adapter Driver. Intel Network Adapter Diagnostic Driver is prone to multiple local buffer-overflow vulnerabilities. 

       

      An attacker can exploit these issues to crash the affected application; denying service to legitimate users. Due to the nature of this issue, code-execution may be possible but this has not been confirmed. 

       

      Note: This issue was previously titled 'Intel Network Adapter Diagnostic Driver CVE-2015-2291 Multiple Remote Code Execution Vulnerabilities'. The title and technical details have been changed to better reflect the underlying component affected.

       

      When will a vendor-supplied patch be available?

       

      Joel