CVE-2015-5466

HIGH

XGI WindowsXP Display Manager <6.14.10.1090 - Privilege Escalation

Title source: llm

Description

Silicon Integrated Systems XGI WindowsXP Display Manager (aka XGI VGA Driver Manager and VGA Display Manager) 6.14.10.1090 allows local users to gain privileges via a crafted 0x96002404 IOCTL call.

Exploits (1)

exploitdb WORKING POC

by KoreLogic · textdoswindows

https://www.exploit-db.com/exploits/38055

View Code ZIP pw:eip

References (4)

Core 4

Core References

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/133400/XGI-Windows-VGA-Display-Manager-Privilege-Escalation.html

Exploit, Third Party Advisory x_refsource_misc

https://www.korelogic.com/Resources/Advisories/KL-001-2015-004.txt

Broken Link x_refsource_misc

http://www.securityfocus.com/archive/1/archive/1/536373/100/0/threaded

Exploit, Mailing List, Third Party Advisory x_refsource_misc

http://seclists.org/fulldisclosure/2015/Sep/2

Scores

CVSS v3 7.8

EPSS 0.0013

EPSS Percentile 32.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-269

Status published

Products (1)

sis/xgi_vga_display_manager 6.14.10.1090

Published Jan 15, 2020

Tracked Since Feb 18, 2026