Skip to content

Commit 85ab4a1

Browse files
committed
cve-2025-21333 - 1day breakdown
1 parent 046c2cf commit 85ab4a1

File tree

1 file changed

+3
-2
lines changed

1 file changed

+3
-2
lines changed

content/1day-breakdowns/cve-2025-21333.md

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,8 @@ showTableOfContents: true
1515

1616
**CVE-2025-21333:** https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21333
1717
**Vulnerability Type:** Heap-based Buffer Overflow
18-
**Tested On:** vkrnlintvsp.sys - 10.0.22621.2506
18+
**Tested On:** Windows 11 23H2
19+
**Driver Version:** vkrnlintvsp.sys - 10.0.22621.2506
1920

2021
## Description
2122

@@ -86,7 +87,7 @@ __int64 __fastcall VkiRootAdjustSecurityDescriptorForVmwp(void *a1, char a2)
8687
v4 = Pool2;
8788
if ( Pool2 )
8889
{
89-
memmove(Pool2, Dacl, Dacl->AclSize);
90+
memmove(Pool2, Dacl, Dacl->AclSize); // Vulnerable memmove/memcpy call
9091
v4->AclSize = v8;
9192
v10 = a2 != 0 ? 2 : 0;
9293
ObjectSecurity = RtlAddAccessAllowedAce(v4, 2u, v10 + 2031617, Sid);

0 commit comments

Comments
 (0)