CVE-2021-21787

A privilege escalation vulnerability exists in the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O write requests. During IOCTL 0x9c40a0d8, the first dword passed in the input buffer is the device port to write to and the byte at offset 4 is the value to write via...

IOBit Advanced SystemCare 安全漏洞

Iobit IOBit Advanced SystemCare is a system management utility program from the British company IOBit Iobit. The program is mainly used for scanning, repairing and optimizing your system, among other things. IOBit Advanced SystemCare Ultimate has a security vulnerability. A specially crafted I/O...

IOBit Advanced SystemCare 安全漏洞

Iobit IOBit Advanced SystemCare is a system management utility program from the British company IOBit Iobit. The program is mainly used for scanning, repairing and optimizing the system, among other things. A security vulnerability exists in IOBit Advanced SystemCare Ultimate, which stems from a...

IOBit Advanced SystemCare 安全漏洞

Iobit IOBit Advanced SystemCare is a system management utility program from the British company IOBit Iobit. The program is mainly used for scanning, repairing and optimizing the system, among other things. A security vulnerability exists in IOBit Advanced SystemCare Ultimate, which stems from a...

IOBit Advanced SystemCare 安全漏洞

Iobit IOBit Advanced SystemCare is a system management utility program from Iobit UK. The program is mainly used for scanning, repairing and optimizing the system, etc. requests is an elegant and simple HTTP library for humans from the Python Foundation. With requests, you can send HTTP / 1.1...

IOBit Advanced SystemCare 安全漏洞

Iobit IOBit Advanced SystemCare is a system management utility program from the British company IOBit Iobit. The program is mainly used for scanning, repairing and optimizing the system, among other things. A security vulnerability exists in IOBit Advanced SystemCare Ultimate, which stems from an...

IOBit Advanced SystemCare 安全漏洞

Iobit IOBit Advanced SystemCare is a system management utility program from the British company IOBit Iobit. The program is mainly used for scanning, repairing and optimizing the system, among other things. A security vulnerability exists in IOBit Advanced SystemCare Ultimate, which stems from th...

Iobit IOBit Advanced SystemCare 访问控制错误漏洞

Advanced SystemCare Ultimate is a Windows optimization suite from Iobit that analyzes system performance bottlenecks. advanced SystemCare Ultimate version 14.2.0.220 contains an elevation of privilege vulnerability. An attacker can exploit the vulnerability by sending a malicious I/O request pack...

IOBit Advanced SystemCare Ultimate Privileged I/O Read vulnerabilities

Summary An information disclosure vulnerability exists in the the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O read requests. A specially crafted I/O request packet IRP can lead to privileged reads in the context of a driver which can result in sensitive...

IOBit Advanced SystemCare Ultimate exposed IOCTL 0x9c40a148 vulnerability

Summary An information disclosure vulnerability exists in the IOCTL 0x9c40a148 handling of IOBit Advanced SystemCare Ultimate 14.2.0.220. A specially crafted I/O request packet IRP can lead to a disclosure of sensitive information. An attacker can send a malicious IRP to trigger this vulnerabilit...

IOBit Advanced SystemCare ultimate privileged I/O write vulnerabilities

Summary A privilege escalation vulnerability exists in the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O write requests. A specially crafted I/O request packet IRP can lead to privileged writes which can result in elevation of privileges of the current user. A...

IOBit Advanced SystemCare Ultimate exposed IOCTL 0x9c406144 vulnerability

Summary A privilege escalation vulnerability exists in the IOCTL 0x9c406144 handling of IOBit Advanced SystemCare Ultimate 14.2.0.220. A specially crafted I/O request packet IRP can lead to increased privileges. An attacker can send a malicious IRP to trigger this vulnerability. Tested Versions...

CVE-2020-10234

The AscRegistryFilter.sys kernel driver in IObit Advanced SystemCare 13.2 allows an unprivileged user to send an IOCTL to the device driver. If the user provides a NULL entry for the dwIoControlCode parameter, a kernel panic aka BSOD follows. The IOCTL codes can be found in the dispatch function:...

Code injection

The AscRegistryFilter.sys kernel driver in IObit Advanced SystemCare 13.2 allows an unprivileged user to send an IOCTL to the device driver. If the user provides a NULL entry for the dwIoControlCode parameter, a kernel panic aka BSOD follows. The IOCTL codes can be found in the dispatch function:...

CVE-2020-10234

The CVE-2020-10234 entry concerns the AscRegistryFilter.sys kernel driver in IObit Advanced SystemCare 13.2. Affected components: the kernel driver and device objects \DosDevices\AscRegistryFilter and \Device\AscRegistryFilter. The vulnerability allows an unprivileged user to issue an IOCTL to th...

CVE-2020-10234

The AscRegistryFilter.sys kernel driver in IObit Advanced SystemCare 13.2 allows an unprivileged user to send an IOCTL to the device driver. If the user provides a NULL entry for the dwIoControlCode parameter, a kernel panic aka BSOD follows. The IOCTL codes can be found in the dispatch function:...

IObit Advanced SystemCare Security Vulnerability

Iobit IOBit Advanced SystemCare is a system management utility program from the British company IOBit Iobit. The program is mainly used for scanning, repairing, and optimizing the system, among other things. A security vulnerability exists in IObit Advanced SystemCare 13.2 that allows an...

Hackers compromised IObit forum to spread DeroHE ransomware

By Waqas Over the weekend, Windows utility developer IObit was hacked to facilitate a widespread attack for distributing the DeroHE ransomware. This is a post from HackRead.com Read the original post: Hackers compromised IObit forum to spread DeroHE ransomware...

Denial of Service Vulnerability in IObit Uninstaller

Iobit Uninstaller is a similar Windows add/remove program. IObit Uninstaller suffers from a denial of service vulnerability that can be exploited by attackers to cause a computer crash BSOD with a constructed program...

IObit Uninstaller 10 Pro - Unquoted Service Path Vulnerability

Exploit Title: IObit Uninstaller 10 Pro - Unquoted Service Path Exploit Author: Mayur Parmarth3cyb3rc0p Vendor Homepage: https://www.iobit.com Software Link: https://www.iobit.com/en/advanceduninstaller.php Version: 10 Tested on Windows 10 Unquoted Service Path: When a service is created whose...