CVE-2019-17201

Name of the Vulnerable Software and Affected Versions FastTrack Admin By Request version 6.1.0.0

Description The issue concerns a vulnerable exposed functionality in the underlying service of FastTrack Admin By Request. When a user requests elevation using the AdminByRequest.exe interface, it communicates with the service (Audckq32.exe) using a .NET named pipe. The service relies on client-side validation and does not perform local checks for elevation requests. As a result, any user can request elevation and obtain Administrator privilege by communicating directly with the underlying service, bypassing group policies and permissions.

Recommendations For FastTrack Admin By Request version 6.1.0.0, consider disabling the elevation feature in the AdminByRequest.exe interface until a patch is available to prevent unauthorized access to Administrator privileges. Restrict access to the underlying service (Audckq32.exe) to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.