Proxifier 2.18 Privilege Escalation / Code Execution

Posted by deepcore on April 13, 2017 – 5:28 am

Proxifier versions 2.18 and below ships with a KLoader binary which it installs suid root the first time Proxifier is run. This binary serves a single purpose which is to load and unload Proxifier’s kernel extension. Unfortunately it does this by taking the first parameter passed to it on the commandline without any sanitisation and feeding it straight into system().

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Brother MFC-J6520DW Password Change Authentication Bypass MATESO GmbH Password Safe And Repository Enterprise 7.4.4 Build 2247 Credential Management »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Proxifier 2.18 Privilege Escalation / Code Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL