4/12/2023 0 Comments What does atk package do![]() It runs as NT AUTHORITY\SYSTEM – the most privileged user account.In our initial exploration of the software, we targeted the “ASLDR Service” (AsLdrSrv.exe), because: This app includes a set of utilities which allow users to define the functionality of computer keyboard hot keys (Fn) and other ASUS drivers and software Vulnerability Discovery Note: In order to exploit this vulnerability, the attacker needs to have Administrator privileges. The exploitation technique involves implanting an arbitrary unsigned executable which is executed by a signed service that runs as NT AUTHORITY\SYSTEM. We then demonstrate how this vulnerability could have been exploited by an attacker during a post-exploitation phase, in order to achieve persistence and in some cases defense evasion. In this post, we describe the CVE-2019-XXXX vulnerability we found in the ASUS ATK Package. ![]() SafeBreach Labs discovered a new vulnerability in the ASUS ATK Package which is pre-installed on ASUS computers.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |