首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
Asseco SEE iBank FX Client 2.0.9.3 - Local Privilege Escalation Vulnerability
来源: http://www.zeroscience.mk 作者:LiquidWorm 发布时间:2014-02-10  
Asseco SEE iBank FX Client <= 2.0.9.3 Local Privilege Escalation Vulnerability
  
  
Vendor: Asseco SEE
Product web page: http://www.asseco.com
Affected version: 2.0.9.3 (Build 22.06.2011) - Desktop/Enterprise Edition
                  1.2
                  1.1.5.1270 (Service Pack 5) - Desktop Edition
                  1.1.5.1247
                  1.0
  
Application download resource: http://24x7.com.mk/Download.aspx
                               http://www.24x7.rs/eng/content.asp?idmenu1=23&idmenu2=33
  
Summary: FX Client is an offline application for e-banking that is intended only
for legal entities.
  
Desc: The application is vulnerable to an elevation of privileges vulnerability
which can be used by a simple user that can change the executable file with a
binary of choice. The vulnerability exist due to the improper permissions, with
the 'F' flag (full) for the 'Everyone' and 'Users' group, for the 'RichClient.exe'
and 'fxclient.exe' binary files making them world-writable. After you replace the
binary with your rootkit, on reboot you get SYSTEM privileges.
  
  
Tested on: Microsoft Windows 7 Ultimate SP1 (EN) 32/64bit
           Microsoft Windows 7 Professional SP1 (EN) 32/64bit
           Microsoft Windows XP Professional SP3 (EN) 32bit
  
  
Vulnerability discovered by Gjoko 'LiquidWorm' Krstic
                            @zeroscience
  
  
Advisory ID: ZSL-2014-5168
Advisory URL: http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5168.php
  
CWE ID: 276
CWE URL: https://cwe.mitre.org/data/definitions/276.html
  
  
10.01.2014
  
---
  
  
C:\Program Files (x86)\PEXIM\FXClient>icacls RichClient.exe
RichClient.exe NT AUTHORITY\SYSTEM:(I)(F)
               BUILTIN\Administrators:(I)(F)
               BUILTIN\Users:(I)(F)
  
Successfully processed 1 files; Failed processing 0 files
  
C:\Program Files (x86)\PEXIM\FXClient>
  
--
  
C:\Program Files (x86)\Pexim Solutions\FX Client>icacls fxclient.exe
fxclient.exe Everyone:(F)
             NT AUTHORITY\SYSTEM:(F)
  
Successfully processed 1 files; Failed processing 0 files
  
C:\Program Files (x86)\Pexim Solutions\FX Client>

 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·OneHTTPD 0.8 - Crash PoC
·Pandora FMS Remote Code Execut
·VLC 2.1.2 (.asf) - Crash PoC
·Android Browser and WebView ad
·XnView 1.92.1 Command-Line Arg
·Inteno DG301 Remote Command Ex
·Apache Struts Developer Mode O
·SkyBlueCanvas CMS Remote Code
·Bandizip 3.09 Crash Proof Of C
·Apache Tomcat Manager Code Exe
·Kloxo SQL Injection / Remote C
·Linux kernel 3.4+ Arbitrary wr
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved