High severity7.8NVD Advisory· Published Nov 21, 2019· Updated Jun 17, 2026
CVE-2019-19197
CVE-2019-19197
Description
IOCTL Handling in the kyrld.sys driver in Kyrol Internet Security 9.0.6.9 allows an attacker to achieve privilege escalation, denial-of-service, and code execution via usermode because 0x9C402401 using METHOD_NEITHER results in a read primitive.
Affected products
2- Kyrol/Kyrol Internet Securitydescription
- Range: = 9.0.6.9
Patches
Vulnerability mechanics
References
2- github.com/nafiez/nafiez.github.io/blob/master/_posts/2019-11-16-kyrol-internet-security-driver-issue.mdnvdExploitThird Party Advisory
- nafiez.github.io/security/vulnerability/2019/11/16/kyrol-internet-security-driver-issue.htmlnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.