CVE-2019-0116 - Out-of-bounds Read

Severity

21%

Complexity

39%

Confidentiality

48%

An out of bound read in KMD module for Intel(R) Graphics Driver before version 10.18.14.5067 (aka 15.36.x.5067) and 10.18.10.5069 (aka 15.33.x.5069) may allow a privileged user to potentially enable denial of service via local access.

An out of bound read in KMD module for Intel(R) Graphics Driver before version 10.18.14.5067 (aka 15.36.x.5067) and 10.18.10.5069 (aka 15.33.x.5069) may allow a privileged user to potentially enable denial of service via local access.

CVSS 3.0 Base Score 4.4. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

CVSS 2.0 Base Score 2.1. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:N/I:N/A:P).

Demo Examples

Out-of-bounds Read

CWE-125

In the following code, the method retrieves a value from an array at a specific array index location that is given as an input parameter to the method


               
}

                     
return value;// check that the array index is less than the maximum// length of the array

                           
value = array[index];// get the value at the specified index of the array
// if array index is invalid then output error message// and return value indicating error
value = -1;

However, this method only verifies that the given array index is less than the maximum length of the array but does not check for the minimum value (CWE-839). This will allow a negative value to be accepted as the input array index, which will result in a out of bounds read (CWE-125) and may allow access to sensitive memory. The input array index should be checked to verify that is within the maximum and minimum range required for the array (CWE-129). In this example the if statement should be modified to include a minimum range check, as shown below.


               
...// check that the array index is within the correct// range of values for the array

Overview

Type

Intel Graphics Driver

First reported 5 years ago

2019-05-17 16:29:00

Last updated 5 years ago

2019-05-21 14:49:00

Affected Software

Intel Graphics Driver 15.33.43.4425 for Windows

15.33.43.4425
windows

Intel Graphics Driver 15.33.45.4653 for Windows

15.33.45.4653
windows

Intel Graphics Driver 15.33.46.4885 for Windows

15.33.46.4885
windows

Intel Graphics Driver 15.36.26.4294 for Windows

15.36.26.4294
windows

Intel Graphics Driver 15.36.28.4332 for Windows

15.36.28.4332
windows

Intel Graphics Driver 15.36.31.4414 for Windows

15.36.31.4414
windows

Intel Graphics Driver 15.36.33.4578 for Windows

15.36.33.4578
windows

Intel Graphics Driver 15.36.34.4889 for Windows

15.36.34.4889
windows

References

108385

Third Party Advisory, VDB Entry

https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00218.html

Vendor Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.