Fish_TotalAV

TotalAV

---

There is a TotalAV instance running with privileges of SYSTEM in the target system. This was Fish by PEAS at a later stage.

Version Information

---

PS C:\Program Files (x86)\TotalAV> cat SecurityProductInformation.ini
 
[Products]
Name=SSProtect
Company=SS Protect Ltd
Version=4.14.31
Upgrade=false
DSA-Aware=true

Checking the version information; 4.14.31

Vulnerabilities

---

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/fish]
└─$ searchsploit TotalAV 4.14.31
----------------------------------------------- ---------------------------------
 Exploit Title                                 |  Path
----------------------------------------------- ---------------------------------
TotalAV 2020 4.14.31 - Privilege Escalation    | windows/local/47897.txt
----------------------------------------------- ---------------------------------
Shellcodes: No Results
Papers: No Results

TotalAV 4.14.31 suffers from a privilege escalation vulnerability; CVE-2019-18194 Moving onto the Privilege Escalation phase