CVE-2008-5049

ISecSoft Anti-Keylogger Elite < 3.3.0 - Local Privilege Escalation via AKEProtect.sys IOCTL Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5049. PoCs published by NT Internals.

AI-analyzed exploit summary This exploit targets a local privilege escalation vulnerability in Anti-Keylogger Elite's driver (AKEProtect.sys <= 3.3.3.0). The exploit leverages flawed driver input validation to escalate privileges on the local system.

Description

Buffer overflow in AKEProtect.sys 3.3.3.0 in ISecSoft Anti-Keylogger Elite 3.3.0 and earlier, and possibly other versions including 3.3.3, allows local users to gain privileges via long inputs to the (1) 0x002224A4, (2) 0x002224C0, and (3) 0x002224CC IOCTL.

Exploits (1)

exploitdb WORKING POC VERIFIED

by NT Internals · textlocalwindows

https://www.exploit-db.com/exploits/7054

View Code ZIP pw:eip

This exploit targets a local privilege escalation vulnerability in Anti-Keylogger Elite's driver (AKEProtect.sys <= 3.3.3.0). The exploit leverages flawed driver input validation to escalate privileges on the local system.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Anti-Keylogger Elite <= 3.3.0 (AKEProtect.sys <= 3.3.3.0)

No auth needed

Prerequisites: Local access to the target system · Presence of vulnerable Anti-Keylogger Elite driver

MITRE ATT&CK