#480 Peach fuzzing with avpui.exe


  • Accepted

    , last edited by Jarvis

    Real system:

    Windows 10 64-bit, Version 1803

    KIS 20.0.0.454 de app + drv verifier enabled

    Reproduction steps:

    Important is that Traces are enabled or it wont work!

    When i hand a fuzzed dll file to avpui.exe with Peach Fuzzer ,with the start a process option, Peach logs an Illegal Instruction Violation starting at avpuimain!SoundPlayW+0x00000000000a013b.

    KIS isnt effected because an extra process is started.

    It works with any fuzzed dll and some other filetypes.

    I attached the peach logs.

    System Settings

    Operating system: Win 10, x64

    System: Intel Core i7 4770 @ 3.4GHZ, 12,0GB RAM, NVIDIA Geforce GTX 1060 6GB, Harddisk 1TB

    Product: KIS

    Product Version: 20.0.0.454

    Language: de-DE

    Product Logs: https://cloud.qainfo.ru/s/k6PQjoJtJN34O1A


  • Kaspersky Lab

    @helios_07 hello! Can you  create application dump and OS dump also? 



  • @dmitriy-pisarets

    Hi dmitriy,

    I dont think i cant create a dump, i just use the graphical interface of peach to do that and the avpui process runs for about 2 sec only.

    Thats the Peach Version i use :https://cloud.qainfo.ru/s/8mnuwKBQxiv4J8p

    The gui PeachFuzzBang.exe

    Under general, template file any dll, fuzzed file name fuzzed.dll, under debugger start a proces command line the path to avpui.exe fuzzed.dll.

    Then start fuzzing, if everything works peach logs the violation as described aboth.

    I hope those steps help to reproduce it at your end.


  • , last edited by Helios_07



Looks like your connection to Beta Testing was lost, please wait while we try to reconnect.