Home

Awesome

CVE-2020-14974

A simple POC that demonstrates A vulnerability found in IObitUnlocker 1.1.2 that leverages IOCTL codes found it its vulnerable driver (IObitUnlocker.sys), providing ability to unlock, delete, rename, copy, and move running files as a low privileged user.

Resources

https://nvd.nist.gov/vuln/detail/CVE-2020-14974

https://theevilbit.github.io/posts/iobit_unlocker_lpe/