CVE-2020-14974 PoC — IOBit Unlocker 安全漏洞

Source

https://github.com/Aterror2be/CVE-2020-14974

Associated Vulnerability

Title:IOBit Unlocker 安全漏洞 (CVE-2020-14974)
Description:IOBit Unlocker是一款文件清理工具。 IOBit Unlocker 1.1.2版本中的驱动程序存在安全漏洞。攻击者可利用该漏洞解锁文件并关闭进程（即使该进程以SYSTEM权限运行）。

Description

A simple POC that demonstrates A vulnerability found in IObitUnlocker 1.1.2 that leverages IOCTL codes found it its vulnerable driver (IObitUnlocker.sys), providing ability to unlock, delete, rename, copy, and move running files and a low privileged user.

Readme

# CVE-2020-14974
A simple POC that demonstrates A vulnerability found in IObitUnlocker 1.1.2 that leverages IOCTL codes found it its vulnerable driver (IObitUnlocker.sys), providing ability to unlock, delete, rename, copy, and move running files as a low privileged user.

## Resources
https://nvd.nist.gov/vuln/detail/CVE-2020-14974

https://theevilbit.github.io/posts/iobit_unlocker_lpe/

File Snapshot


 [4.0K]  /data/pocs/21498440b74958532d4858f0d8efc329401d2387
├── [4.0K]  IObitUnlocker
│   ├── [4.0K]  Header Files
│   │   └── [1.0K]  IObitUnlocker.hpp
│   ├── [6.9K]  IObitUnlocker.vcxproj
│   ├── [1.3K]  IObitUnlocker.vcxproj.filters
│   ├── [ 165]  IObitUnlocker.vcxproj.user
│   ├── [4.0K]  Resource Files
│   │   └── [397K]  IObitDriver.hpp
│   └── [4.0K]  Source Files
│       ├── [9.3K]  IObitUnlocker.cpp
│       └── [ 257]  Main.cpp
├── [1.4K]  IObitUnlocker.sln
└── [ 390]  README.md

4 directories, 9 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!