CVE-2018-16713

MEDIUM

IObit Advanced SystemCare <1.2.0.5 - Code Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-16713. PoCs published by DownWithUp.

AI-analyzed exploit summary This PoC exploits CVE-2018-16713 by leveraging the IOBit WinRing0 driver to read the MSR_LSTAR register, demonstrating arbitrary MSR read access. It allocates executable memory regions and uses DeviceIoControl to interact with the vulnerable driver.

Description

IObit Advanced SystemCare, which includes Monitor_win10_x64.sys or Monitor_win7_x64.sys, 1.2.0.5 (and possibly earlier versions) allows a user to send an IOCTL (0x9C402084) with a buffer containing user defined content. The driver's subroutine will execute a rdmsr instruction with the user's buffer for input, and provide output from the instruction.

Exploits (1)

nomisec WORKING POC 6 stars

by DownWithUp · poc

https://github.com/DownWithUp/CVE-2018-16713

View Code ZIP pw:eip

This PoC exploits CVE-2018-16713 by leveraging the IOBit WinRing0 driver to read the MSR_LSTAR register, demonstrating arbitrary MSR read access. It allocates executable memory regions and uses DeviceIoControl to interact with the vulnerable driver.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: IOBit Advanced SystemCare (WinRing0 driver version 1.3.0)

No auth needed

Prerequisites: Vulnerable IOBit WinRing0 driver installed · Local access to the target system

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory x_refsource_misc

https://downwithup.github.io/CVEPosts.html

Scores

CVSS v3 6.5

EPSS 0.0186

EPSS Percentile 76.5%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-119

Status published

Products (1)

iobit/advanced_systemcare < 1.2.0.5

Published Sep 26, 2018

Tracked Since Feb 18, 2026