- Easy File Locker 2.2.0.184, xlkfs.sys 2.2.0.184
- https://xoslab.com/efl.html
Denial of Service
In MessageNotifyCallback, a normal user can send a large value by FilterConnectCommunicationPort to cause out of bound due to the lack of validating input buffer, which will lead to DoS or possibly have unspecified other impact.
In the attached file DoS.zip, there are DoS.exe, DoS.cpp, EFL2.2_Setup(x64).exe, and xlkfs.sys. DoS.exe is the PoC to cause BSOD where EFL2.2_Setup(x64).exe which contains the vulnerable driver xlkfs.sys is installed, and DoS.cpp is the source code of DoS.exe. To reproduce the issue, just install EFL2.2_Setup(x64).exe and execute DoS.exe. It is expected that the system will crash (BSOD) once DoS.exe is executed.