Skip to content
master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
WindowsKernelVuln/CVE-2023-1486/
WindowsKernelVuln/CVE-2023-1486/

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
bin
 
 
 
 

Wise Force Deleter, WiseUnlock64.sys, Arbitrary Delete File

Vulnerability Info

Version

Impact

Delete Arbitrary File

Description

From IoControlCode 0x220004, a normal user can delete any file due to the lack of access control.

Reproduce

In the attached file ArbitraryDeleteFile.zip, there are ArbitraryDeleteFile.exe, ArbitraryDeleteFile.cpp, WFDSetup_1.5.3.54.exe, and WiseUnlock64.sys. ArbitraryDeleteFile.exe is the PoC to delete any file arbitrarily where WFDSetup_1.5.3.54.exe which contains the vulnerable driver WiseUnlock64.sys is installed, and ArbitraryDeleteFile.cpp is the source code of ArbitraryDeleteFile.exe. To reproduce the issue, just install WFDSetup_1.5.3.54.exe and execute ArbitraryDeleteFile.exe. It is expected that C:\Windows\System32\cmd.exe will be deleted once ArbitraryDeleteFile.exe is executed. Password for attachment: ArbitraryDeleteFile https://drive.google.com/file/d/1Ziu1Ut_-01mDpjdj2Z8rfiU7gtUd_WVU/view?usp=sharing