CVE-2015-2291: Intel Ethernet Diagnostics Driver for Windows Denial-of-Service Vulnerability
First published: Wed Aug 09 2017(Updated: )
(1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a denial of service or possibly execute arbitrary code with kernel privileges via a crafted (a) 0x80862013, (b) 0x8086200B, (c) 0x8086200F, or (d) 0x80862007 IOCTL call.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intel Ethernet Diagnostics Driver Iqvw32.sys | =1.03.0.7 | |
| Intel Ethernet Diagnostics Driver Iqvw64.sys | =1.03.0.7 | |
| Microsoft Windows | ||
| Intel ethernet diagnostics driver for Windows | ||
| All of | ||
| Any of | ||
| Intel Ethernet Diagnostics Driver Iqvw32.sys | =1.03.0.7 | |
| Intel Ethernet Diagnostics Driver Iqvw64.sys | =1.03.0.7 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://packetstormsecurity.com/files/130854/Intel-Network-Adapter-Diagnostic-Driver-IOCTL-DoS.html
- http://www.securityfocus.com/bid/79623
- https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00051&languageid=en-fr
- https://www.exploit-db.com/exploits/36392/
- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00051.html;
- https://nvd.nist.gov/vuln/detail/CVE-2015-2291
Frequently Asked Questions
What is the severity of CVE-2015-2291?
CVE-2015-2291 has a high severity rating due to its potential to allow local users to execute arbitrary code with kernel privileges.
How do I fix CVE-2015-2291?
To fix CVE-2015-2291, users should update the Intel Ethernet diagnostics driver to version 1.3.1.0 or later.
What software is affected by CVE-2015-2291?
CVE-2015-2291 affects Intel Ethernet diagnostics drivers IQVW32.sys and IQVW64.sys prior to version 1.3.1.0.
Can CVE-2015-2291 cause denial of service?
Yes, CVE-2015-2291 can cause a denial of service when exploited by a local user.
Is CVE-2015-2291 a remote exploit?
No, CVE-2015-2291 requires local access to exploit the vulnerability.
- collector/nvd-index
- agent/type
- agent/description
- agent/title
- agent/weakness
- agent/severity
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/first-publish-date
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/references
- agent/author
- agent/event
- agent/softwarecombine
- collector/nvd-cve
- source/NVD
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-api
- vendor/intel
- canonical/intel ethernet diagnostics driver iqvw32.sys
- version/intel ethernet diagnostics driver iqvw32.sys/1.03.0.7
- canonical/intel ethernet diagnostics driver iqvw64.sys
- version/intel ethernet diagnostics driver iqvw64.sys/1.03.0.7
- vendor/microsoft
- canonical/microsoft windows
- canonical/intel ethernet diagnostics driver for windows