The specific flaw exists within the implementation of the 0x2711 IOCTL in the webvrpcs process. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call.
CVE Link
Exploit Type - Old
Exploits/Remote
Exploit Platform
Product Name