Local Privilege Escalation
CVE-2019-16897
Affected Products
- K7 Antivirus Premium from version 16.0.xxx up to and including 16.0.0120
- K7 Total Security from version 16.0.xxx up to and including 16.0.0120
- K7 Ultimate Security from version 16.0.xxx up to and including 16.0.0120
Vulnerability Type
Improper Access Control
Impact
Privileged Registry Write
Summary
Improper access controls allow an attacker to access and control the inter-process communication between a low privileged process and a SYSTEM service process. This can result in an arbitrary registry write to facilitate an escalation of privilege.
Exploitation
Auto Exploit PoC
Disclaimer: Only works for K7 Ultimate Security.
- Drop
payload.dllonto the desktop (PoC is hardcoded to use usernameStandard-User, - Navigate the AV UI to the landing/home page,
- Run
SelfProtDisable.exe, - Run
PWN.EXE.
