Cannot query DSE state, GetLastError 5: [!] Unable to unload vulnerable driver, NTSTATUS (0xC0000010):

Question

Cannot query DSE state, GetLastError 5: [!] Unable to unload vulnerable driver, NTSTATUS (0xC0000010):

KinGGKlick opened this issue 3 months ago · 1 comments

Good afternoon!

Once again I am faced with a similar error:
[#] Kernel Driver Utility v1.4.2 (build 2404) started, (c)2020 - 2024 KDU Project
[#] Built at Tue Apr 2 07:50:29 2024, header checksum 0x649AD
[#] Supported x64 OS : Windows 7 and above
[] CPU vendor string: GenuineIntel
[] Windows version: 10.0 build 19045
[*] SecureBoot is disabled on this machine
[+] MSFT Driver block list is enabled
[+] The "" hypervisor present
[+] Drivers database "drv64.dll" loaded at 0x00007FFB924C0000
[+] Drivers database version is OK
[+] Firmware type (FirmwareTypeUefi)
[+] Provider: "CVE-2015-2291", Name "NalDrv"
[+] Extracting vulnerable driver as "C:\Users\user\Desktop\Test\kdu 2\NalDrv.sys"
[+] Vulnerable driver "NalDrv" loaded
[+] Driver device "NalDrv" has been opened successfully
[+] Executing post-open callback for given provider
[+] Driver device security descriptor set successfully
[+] Module "CI.dll" loaded for pattern search
[!] Cannot query DSE state, GetLastError 5: [!] Unable to unload vulnerable driver, NTSTATUS (0xC0000010): [+] Return value: 0. Bye-bye!

I tried to change the provider via -prv and it didn't help me

.

Answer 1 · 2024-08-19T11:25:07.000Z

Hello,

show kdu -diag results