QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2022-24139

Back to search

CVE-2022-24139

Published: Jul 6, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

In IOBit Advanced System Care (AscService.exe) 15, an attacker with SEImpersonatePrivilege can create a named pipe with the same name as one of ASCService's named pipes. ASCService first tries to connect before trying to create the named pipes, because of that during login the service will try to connect to the attacker which will lead to either escalation of privileges (through token manipulation and ImpersonateNamedPipeClient() ) from ADMIN -> SYSTEM or from Local ADMIN-> Domain ADMIN depending on the user and named pipe that is used.

VendorProductVersions

n/a

n/a

affected
n/a

References

http://advanced.com
x_refsource_MISC
http://iobit.com
x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now