Windscribe WindscribeService Named Pipe Privilege Escalation

Posted by deepcore on February 6, 2020 – 4:28 am

The Windscribe VPN client application for Windows makes use of a Windows service WindscribeService.exe which exposes a named pipe \.pipeWindscribeService allowing execution of programs with elevated privileges. Windscribe versions prior to 1.82 do not validate user-supplied program names, allowing execution of arbitrary commands as SYSTEM. This Metasploit module has been tested successfully on Windscribe versions 1.80 and 1.81 on Windows 7 SP1 (x64).

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« [dos] AbsoluteTelnet 11.12 – 'license name' Denial of Service (PoC) Wago PFC200 Remote Code Execution »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Windscribe WindscribeService Named Pipe Privilege Escalation

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL