ASRock Forums : fix for AsrDrv103.sys CVE-2020-15368 £

ASRock Forums : fix for AsrDrv103.sys CVE-2020-15368 £ https://forum.asrock.com/ Copyright (c) 2006-2013 Web Wiz Forums - All Rights Reserved. Tue, 12 May 2026 19:49:24 +0000 Fri, 24 Mar 2023 21:57:07 +0000 http://blogs.law.harvard.edu/tech/rss Web Wiz Forums 12.04 360 https://forum.asrock.com/RSS_post_feed.asp?TID=25660 <![CDATA[ASRock Forums]]> https://forum.asrock.com/forum_images/web_wiz_forums_black.png https://forum.asrock.com/ <![CDATA[fix for AsrDrv103.sys CVE-2020-15368 £ : I don't think this is a question...]]> https://forum.asrock.com/forum_posts.asp?TID=25660&PID=104197&title=fix-for-asrdrv103-sys-cve202015368-pound#104197 Author: threadzipper1957
Subject: 25660
Posted: 24 Mar 2023 at 9:57pm

I don't think this is a question for the forum, and it's best to use the support form. https://tw.asrock.com/events/tsd.asp
Without knowing which board, which hardware and which BIOS, it's difficult to answer.
Tech support should probably know.
Check Your spam folder for replies.]]> Fri, 24 Mar 2023 21:57:07 +0000 https://forum.asrock.com/forum_posts.asp?TID=25660&PID=104197&title=fix-for-asrdrv103-sys-cve202015368-pound#104197 <![CDATA[fix for AsrDrv103.sys CVE-2020-15368 £ : Is there a fix for driver AsrDrv103.sys...]]> https://forum.asrock.com/forum_posts.asp?TID=25660&PID=104184&title=fix-for-asrdrv103-sys-cve202015368-pound#104184 Author: waltz49
Subject: 25660
Posted: 24 Mar 2023 at 8:44am

Is there a fix for driver AsrDrv103.sys which has a critical security flaw (CVE-2020-15368) and is even blocked by Microsoft when Memory Integrity is enabled?

AsrDrv10x.sys is a driver used in several ASRock utilities which does not work if Windows Memory Integrity is switched on because it violates the most basic security rules. The reason it fails is that this driver is nothing but a test driver that allows any user space program to change anything in the Kernel using just a few lines of code and for which exploits can even be purchased. Yikes!!! AsrDrv10x.sys drivers work if Memory Integrity is off which is most systems, so if I'm reading all this right, almost all ASRock systems are vulnerable.

The CVE is considered a CRITICAL security error and I haven't been able to find any replacement so I am having to avoid ASRock utilities entirely. I can't turn on Memory Integrity because other programs like VMWare don't run with it enabled, so if I install the ASRock utilities, my system is basically wide open. But I really want to use the A-Tuning utility.

Since this is now 2 or 3 years old, is there any hope for a patch or did I miss one?

Thanks
]]> Fri, 24 Mar 2023 08:44:25 +0000 https://forum.asrock.com/forum_posts.asp?TID=25660&PID=104184&title=fix-for-asrdrv103-sys-cve202015368-pound#104184