Windows 10 vulnerability: access to a specific location causes system crash

Since October last year, Windows security researcher Jonas Lykkegaard has posted multiple tweets on Twitter, stating that entering a path in the browser address will immediately cause Windows 10 to crash and display BSOD.

When developers want to interact directly with Windows devices, they can pass the Win32 device namespace path as the parameters of various Windows programming functions. This allows applications to directly interact with the physical disk without going through the file system. So, Lykkegaard found a Win32 device namespace path of “console multiplexer driver”, which he thought was used for “kernel / usermode ipc”. When the path is opened in any way, even from a low-privileged user, it will cause Windows 10 to crash.

\\.\globalroot\device\condrv\kernelconnect

When connecting to the device, the developer should pass the “attach” extended attribute to properly communicate with the device. If you try to connect to the path without passing this attribute, it will cause an exception, which will result in a Windows 10 Blue Screen of Death (BSOD) crash.

After testing, it has been confirmed that this error exists in Windows 10 version 1709 and later. At the same time, Microsoft said it will fix the problem as soon as possible. “Microsoft has a customer commitment to investigate reported security issues and we will provide updates for impacted devices as soon as possible.”

Via: bleepingcomputer