CVE-2015-5466

HIGH

XGI WindowsXP Display Manager <6.14.10.1090 - Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-5466. PoCs published by KoreLogic.

AI-analyzed exploit summary This exploit leverages an arbitrary write vulnerability in the XGI Windows VGA Display Manager (xrvkp.sys) via IOCTL to overwrite function pointers in HalDispatchTable, leading to privilege escalation on Windows XP SP3.

Description

Silicon Integrated Systems XGI WindowsXP Display Manager (aka XGI VGA Driver Manager and VGA Display Manager) 6.14.10.1090 allows local users to gain privileges via a crafted 0x96002404 IOCTL call.

Exploits (1)

exploitdb WORKING POC
by KoreLogic · textdoswindows
https://www.exploit-db.com/exploits/38055

This exploit leverages an arbitrary write vulnerability in the XGI Windows VGA Display Manager (xrvkp.sys) via IOCTL to overwrite function pointers in HalDispatchTable, leading to privilege escalation on Windows XP SP3.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Reliable
Target: XGI VGA Display Manager 6.14.10.1090
No auth needed
Prerequisites: Windows XP SP3 with XGI VGA Display Manager 6.14.10.1090 installed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.korelogic.com/Resources/Advisories/KL-001-2015-004.txt
Exploit, Mailing List, Third Party Advisory x_refsource_misc
http://seclists.org/fulldisclosure/2015/Sep/2

Scores

CVSS v3 7.8
EPSS 0.0113
EPSS Percentile 62.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-269
Status published
Products (1)
sis/xgi_vga_display_manager 6.14.10.1090
Published Jan 15, 2020
Tracked Since Feb 18, 2026