| Title | IObit Malware Fighter 13.2.0 Insecure Permissions in Driver |
|---|
| Description | A driver in IObit Malware Fighter version 13.2.0 does not apply secure permissions, allowing for arbitrary file delete. This can lead to Local Privilege Escalation, through DLL sideloading after using the driver to delete a DLL loaded by the high integrity process owned by IoBit Malware Fighter. It bypasses the previous patch that blocked this exploit. The full writeup is available here. https://nathan2.com/posts/iobit/. The working POC is available on github here. https://github.com/nasawyer7/IObitDriverav. |
|---|
| Source | ⚠️ https://github.com/nasawyer7/IObitDriverav |
|---|
| User | nathan2 (UID 97052) |
|---|
| Submission | 05/14/2026 18:41 (1 month ago) |
|---|
| Moderation | 06/14/2026 13:43 (1 month later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 370844 [IObit Malware Fighter up to 13.2.0 DLL permission] |
|---|
| Points | 20 |
|---|