header-logo
Suggest Exploit
vendor:
CloneCD, CloneDVD, Virtual CloneDrive, AnyDVD & AnyDVD HD, ElbyCDIO.sys
by:
alex ntinternals org
7.2
CVSS
HIGH
Local Privilege Escalation
N/A
CWE
Product Name: CloneCD, CloneDVD, Virtual CloneDrive, AnyDVD & AnyDVD HD, ElbyCDIO.sys
Affected Version From: CloneCD < 5.3.1.4, CloneDVD < 2.9.2.2, Virtual CloneDrive < 5.4.2.5, AnyDVD & AnyDVD HD < 6.5.2.8, ElbyCDIO.sys < 6.0.3.2
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows NT/2000/XP
2009

CloneCD/DVD & Virtual CloneDrive & AnyDVd/HD Local Privilege Escalation

This exploit affects SlySoft Inc. products CloneCD < 5.3.1.4, CloneDVD < 2.9.2.2, Virtual CloneDrive < 5.4.2.5, AnyDVD & AnyDVD HD < 6.5.2.8 and ElbyCD Windows NT/2000/XP I/O driver - ElbyCDIO.sys < 6.0.3.2. It allows an attacker to gain elevated privileges on the system.

Mitigation:

Update to the latest version of the affected software.
Source

Exploit-DB raw data:

////////////////////////////////////////////////////////////////////////////////////
// +----------------------------------------------------------------------------+ //
// |                                                                            | //
// | SlySoft Inc. - http://www.slysoft.com/                                     | //
// |                                                                            | //
// | Affected Software:                                                         | //
// | CloneCD < 5.3.1.4                                                          | //
// | CloneDVD < 2.9.2.2                                                         | //
// | Virtual CloneDrive < 5.4.2.5                                               | //
// | AnyDVD & AnyDVD HD < 6.5.2.8                                               | //
// |                                                                            | //
// | Affected Driver:                                                           | //
// | ElbyCD Windows NT/2000/XP I/O driver - ElbyCDIO.sys < 6.0.3.2              | //
// |                                                                            | //
// | Local Privilege Escalation Exploit                                         | //
// | For Educational Purposes Only !                                            | //
// |                                                                            | //
// +----------------------------------------------------------------------------+ //
// |                                                                            | //
// | NT Internals - http://www.ntinternals.org/                                 | //
// | alex ntinternals org                                                       | //
// | 18 March 2009                                                              | //
// |                                                                            | //
// | CloneCD/DVD & Virtual CloneDrive & AnyDVD/HD Multiple Vulnerabilities      | //
// | NTIADV0812 - http://www.ntinternals.org/ntiadv0812/ntiadv0812.html         | //
// |                                                                            | //
// | References:                                                                | //
// | Exploiting Common Flaws in Drivers                                         | //
// | Ruben Santamarta - http://www.reversemode.com/                             | //
// |                                                                            | //
// +----------------------------------------------------------------------------+ //
////////////////////////////////////////////////////////////////////////////////////

Exploit:
http://ntinternals.org/ntiadv0812/ElbyCDIO_Exp.zip
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/32850.zip (2009-ElbyCDIO_Exp.zip)

Advisory:
http://ntinternals.org/ntiadv0812/ntiadv0812.html

# milw0rm.com [2009-03-20]

Navigation

Suggest Exploit

Services By CQR