Vulnerability Reference: CVE-2020-9453
Release Date: 05/04/2022
Description: In Epson iProjection v2.30, the driver file EMP_MPAU.sys may allow local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9C402406 and IOCtl 0x9C40240A.
Impact: Successful exploitation of this vulnerability can cause a denial of service attack resulting in the computer crashing or other potential issues.
Solution: To ensure the security of your Epson product, please download and install the latest version of Epson iProjection for your product by using the link below. In the meantime, and as a general rule to help secure all devices, end-users and their administrators should always implement and maintain industry-standard security controls and practices in setting up and managing their networks. Those practices include immediately replacing default passwords with strong passwords, connecting projectors behind a firewall and keeping all software and firmware up-to-date.
This version of Epson iProjection is compatible with Windows 11, Windows 10 32/64-bit, Windows 8.1 32/64-bit
Affected Models | Affected Epson iProjection Versions | New Epson iProjection Version | Download |
All projector models using Epson iProjection | 2.30 and below | 4.01 | DOWNLOAD |