Vir.IT Explorer Anti-Virus CVE-2017-16237 Local Privilege Escalation Vulnerability

Vir.IT Explorer Anti-Virus is prone to a local privilege-escalation vulnerability.

Local attackers can exploit this issue to gain elevated privileges.
Vir.IT Explorer Anti-Virus prior to version 8.5.42 are vulnerable.

Information

Bugtraq ID: 101851
Class: Design Error
CVE: CVE-2017-16237

Remote: No
Local: Yes
Published: Nov 03 2017 12:00AM
Updated: Nov 15 2017 08:07PM
Credit: Parvez Anwar (@parvezghh).
Vulnerable: TG Soft Vir.IT eXplorer Anti-Virus 8.5.39

Not Vulnerable: TG Soft Vir.IT eXplorer Anti-Virus 8.5.42

Exploit

The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.

References:

Exploiting Vir.IT eXplorer Anti-Virus Arbitrary Write Vulnerability (Greyhat)
TG Soft Homepage (TG Soft)

Source: www.securityfocus.com

Exploit Collector

Search Exploit