CVE-2023-35863

In MADEFORNET HTTP Debugger through 9.12, the Windows service does not set the seclevel registry key before launching the driver. Thus, it is possible for an unprivileged application to obtain a handle to the NetFilterSDK wrapper before the service obtains exclusive access...

PT-2023-25352 · Madefornet · Madefornet Http Debugger

Name of the Vulnerable Software and Affected Versions: MADEFORNET HTTP Debugger versions 9.12 and earlier Description: The issue arises because the Windows service in MADEFORNET HTTP Debugger does not set the seclevel registry key before launching the driver. This allows an unprivileged applicati...