Skip to content
master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 

BestXsoftware Best Free Keylogger 5.2.9 Privilege Escalation

  • Author: Martino Sani
  • Release date: 2018-10-19
  • Software: https://bestxsoftware.com/
  • Version: 5.2.9 and probably previous versions
  • CVE: CVE-2018-18519

Description

BestXsoftware Best Free Keylogger 5.2.9 allows local users to gain privileges via a Trojan horse %PROGRAMFILES%\BFK 5.2.9\syscrb.exe file because of insecure permissions for the BUILTIN\Users group.

Attack Vectors

Best Free Keylogger v. 5.2.9 is installed on the system.

The attacker (with arbitrary privileges) replaces the file C:\Program Files\BFK 5.2.9\syscrb.exe. It is world writable (Windows Group: Users).

A victim user opens a session, such as through a RDP client, and C:\Program Files\BFK 5.2.9\syscrb.exe is executed with the logged-in user's privileges.

The attacker can execute arbitrary code impersonating the victim.

Timeline

  • 2018-09-28: Vendor notification. No response.
  • 2018-10-10: No responses from the vendor. Disclosure.
  • 2019-06-01: Vendor releases a new version (v. 6.0.0) in order to fix the security issue.

The new version can be downloaded on the following link: https://bestxsoftware.com/download/installer_trial_6.0.0.exe

The author is not responsible for the misuse of the information provided in this advisory.