Avira Internet Security – ‘avipbb.sys’ Filter Bypass / Privilege Escalation

Exploit Database
9 阅读

作者： Ahmad Moghimi

日期： 2013-10-22
类别：
- local
平台：
- windows
来源：https://www.exploit-db.com/exploits/29125/

# Exploit Title: Avira internet security avipbb.sys filter bypass and
privilege escalation - 0Day
# Date: 2013-10-17
# Exploit Author: Ahmad Moghimi (http://mallocat.com
<http://mallocat.com/>, https://twitter.com/mall0cat)
# Vendor Homepage: http://www.avira.com/
# Software Link:
http://premium.avira-update.com/package/webloader/win32/iss/avira_internet_security_suite.exe
# Version: Latest
# Tested on: Windows XPSP3
# CVE : NO-CVE

Reference : http://mallocat.com/another-journey-to-antivirus-escalation/
Demo: http://mallocat.com/wp-content/uploads/2013/10/avira0.swf
Exploit code:
http://mallocat.com/wp-content/uploads/2013/10/AviraAvipbbExploit.7z
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/29125.7z

last Exploits
Avira Internet Security – ‘avipbb.sys’ Filter Bypass / Privilege Escalation的更多信息

QNX 6.4.x/6.5.x pppoectl – Information Disclosure：
RSA NetWitness Platform 12.2 – Incorrect Access Control / Code Execution：
McAfee VirusScan Enterprise 8.8 – Security Restrictions Bypass：
myMP3-Player 3.0 – ‘.m3u’ Local Buffer Overflow (SEH)：
Wondershare Dr.Fone 12.0.18 – ‘Wondershare InstallAssist’ Unquoted Service Path：
Watchguard Firewalls – ‘ESCALATEPLOWMAN’ ifconfig Privilege Escalation：
Linux Kernel 3.3 < 3.8 (Ubuntu / Fedora 18) - 'sock_diag_handlers()' Local Privilege Escalation (3)：
KMSpico 17.1.0.0 – ‘Service KMSELDI’ Unquoted Service Path：