PT-2020-12199 · Tencent · Qqbrowser
Maciej Miszczyk
·
Published
2020-04-09
·
Updated
2021-07-21
·
CVE-2020-10551
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
QQBrowser versions prior to 10.5.3870.400
Description
The issue allows local attackers to escalate privileges to NT AUTHORITYSYSTEM by exploiting the fact that the TsService.exe file, installed by QQBrowser, is writable by anyone belonging to the NT AUTHORITYAuthenticated Users group. This group includes all local and remote users. The exploitation involves writing a malicious executable to the location of TsService.
Recommendations
For QQBrowser versions prior to 10.5.3870.400, update to version 10.5.3870.400 or later to resolve the issue. As a temporary workaround, consider restricting write access to the TsService.exe file to prevent local attackers from exploiting this weakness.
Exploit
Fix
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qqbrowser