Advisory Details

April 9th, 2018

Intel Security True Key SecureExecute Privilege Escalation Vulnerability

ZDI-18-279
ZDI-CAN-4882

CVE ID CVE-2018-6661
CVSS SCORE 6.9, AV:L/AC:M/Au:N/C:C/I:C/A:C
AFFECTED VENDORS Intel Security
AFFECTED PRODUCTS True Key
VULNERABILITY DETAILS


This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Intel Security True Key. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

The specific flaw exists within the TrueKey service, which listens on TCP port 30000 by default. A crafted message to the SecureExecute method can trigger it to launch insecure binaries. An attacker can leverage this vulnerability to escalate privilege to SYSTEM.
ADDITIONAL DETAILS Intel Security has issued an update to correct this vulnerability. More details can be found at:
http://service.mcafee.com/FAQDocument.aspx?&id=TS102801
DISCLOSURE TIMELINE
  • 2017-06-14 - Vulnerability reported to vendor
  • 2018-04-09 - Coordinated public release of advisory
  • 2018-04-09 - Advisory Updated
CREDIT Anonymous
BACK TO ADVISORIES