ExAllocatePool2

4 exploits Active since Nov 2009
CVE-2019-18845 NOMISEC HIGH WORKING POC
Patriot Viper RGB <1.1 - Memory Corruption
The MsIo64.sys and MsIo32.sys drivers in Patriot Viper RGB before 1.1 allow local users (including low integrity processes) to read and write to arbitrary memory locations, and consequently gain NT AUTHORITY\SYSTEM privileges, by mapping \Device\PhysicalMemory into the calling process via ZwOpenSection and ZwMapViewOfSection.
2 stars
CVSS 7.1
CVE-2021-27965 NOMISEC CRITICAL WORKING POC
MSI Dragon Center <2.0.98.0 - Privilege Escalation
The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request.
1 stars
CVSS 9.8
CVE-2009-4049 NOMISEC WORKING POC
avast! Home and Professional 4.8.1356.0 - Memory Corruption
Heap-based buffer overflow in aswRdr.sys (aka the TDI RDR driver) in avast! Home and Professional 4.8.1356.0 allows local users to cause a denial of service (memory corruption) or possibly gain privileges via crafted arguments to IOCTL 0x80002024.
1 stars
EIP-2026-116434 EXPLOITDB c WORKING POC
Tunnel Interface Driver - Denial of Service