Conexant Audio Driver MicTray.exe / MicTray64.exe Keylogger
Low Nessus Plugin ID 100161
SynopsisAn audio driver installed on the remote Windows host can act as a keylogger.
DescriptionThe Conexant audio driver package installed on the remote Windows host is affected by an information disclosure vulnerability in the debugging features of MicTray.exe or MicTray64.exe due to a LowLevelKeyboardProc Windows hook that is being used to capture keystrokes. This data is then leaked via debug messages that are accessible to any process that is running in the current user session or to a publicly readable log file. A local attacker can exploit this vulnerability, via a specially crafted application, to access the keylogging data and thereby disclose potentially sensitive information.
SolutionApply the appropriate vendor-supplied patch.