purabparihar
/ UwAmp Arbitrary Code Execution
Last active
April 15, 2021 11:04
UwAmp Arbitrary Code Execution
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Platform: Windows 10 version 1904 | |
| Impact: Arbitrary Code Execution and Privilege Escalation | |
| Product: UwAmp.exe | |
| Version: 3.0.2 | |
| Summary: | |
| A malicous user can perform arbitrary code execution and priviledge escalation on victim machine by hijacking DLLs. | |
| DLL Hijacking vulnerability occurs when some DLLs are missing from same directory of vulnerable binary. |