A vulnerability in iqvw32.sys and iqvw64e.sys drivers has been discovered in the Intel Network Adapter Driver. Intel Network Adapter Diagnostic Driver is prone to multiple local buffer-overflow vulnerabilities.
An attacker can exploit these issues to crash the affected application; denying service to legitimate users. Due to the nature of this issue, code-execution may be possible but this has not been confirmed.
Note: This issue was previously titled 'Intel Network Adapter Diagnostic Driver CVE-2015-2291 Multiple Remote Code Execution Vulnerabilities'. The title and technical details have been changed to better reflect the underlying component affected.
When will a vendor-supplied patch be available?
Intel released an update to mitigate this issue in June 2015. More information can be found here: https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00051&languageid=en-fr https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00051&languageid=en-fr
Thank you Mark, I will have our patch group test this solution out hopefully soon. When we see resolution I will post to the site and mark your solution as the Answer.
Thank you for responding to my second inquiry so soon.
That download will not work on my HP servers.
Any other ideas/suggestions?
I have the latest and greatest NIC driver and firmware installed but still getting flagged with this vulnerability.