what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 3 of 3

Files from Dr. Oliver Schwarz

Razer Synapse Race Condition / DLL Hijacking

Posted Sep 18, 2023

Authored by Dr. Oliver Schwarz | Site syss.de

Razer Synapse versions before 3.8.0428.042117 (20230601) suffer from multiple vulnerabilities. Due to an unsafe installation path, improper privilege management, and a time-of-check time-of-use race condition, the associated system service "Razer Synapse Service" is vulnerable to DLL hijacking. As a result, local Windows users can abuse the Razer driver installer to obtain administrative privileges on Windows.

tags | exploit, local, vulnerability

systems | windows

advisories | CVE-2022-47631

SHA-256 | 1110267026177d281063e2e963a45b1c22d0c934df7112a724fa52cee6a0a4bc

Download | Favorite | View

Razer Synapse 3.7.0731.072516 Local Privilege Escalation

Posted Jan 27, 2023

Authored by Dr. Oliver Schwarz | Site syss.de

Razer Synapse version 3.7.0731.072516 suffers from a local privilege escalation due to a DLL hijacking vulnerability.

tags | exploit, local

systems | windows

advisories | CVE-2022-47632

SHA-256 | b44857059280bd0c0f9219f18143442834c6560bf766c7639b847e7be7cb3329

Download | Favorite | View

Razer Synapse 3.6.x DLL Hijacking

Posted Mar 28, 2022

Authored by Matthias Deeg, Dr. Oliver Schwarz | Site syss.de

Razer Synapse versions prior to 3.7.0228.022817 suffer from a dll hijacking vulnerability.

tags | exploit

advisories | CVE-2021-44226

SHA-256 | 002e65d1b8885606e6754a271ca91f9be7adcbea2fcaf38560beda10596e175d

Download | Favorite | View