There is an issue with the permissions in the Soundrecorder service. If the “Any user” permission is given to any user, the service could be used by any user without any restrictions.
There is no requirement to have an elevated privilege to exploit this vulnerability. A low privilege user could also exploit this vulnerability.
Update to fix this issue as soon as possible.
Another issue found in Soundrecorder service is a missing check for the user account’s privilege. This could lead to elevation of privilege in Soundrecorder service with no additional execution privileges needed.
If the “Any user” permission is given to any user, the service could be used by any user without any restrictions.
There is no requirement to have an elevated privilege to exploit this vulnerability. A low privilege user could also exploit this vulnerability.
Update to fix this issue as soon as possible.
Now let’s see how to exploit this vulnerability. First, open Soundrecorder app.
Next, click on the Record button to start recording.
Now, switch to another app such as Youtube or another website. When you come back to Soundrecorder, you will find that the app is still running.
Now, you can quit the Soundrecorder app without terminating the recording.
After closing the app, you can go back to the original website and you will find that the recording has been saved to
What’s a privilege elevation vulnerability?
Privilege elevation vulnerabilities are a type of software vulnerability where privileges are granted to a user without the need for additional execution privileges. In the Soundrecorder service, the “Any user” permission can be leveraged by an app without any additional privileges needed.
This could lead to elevation of privilege in Soundrecorder service with no additional execution privileges needed. This is dangerous since this could allow the recording to be saved onto another app or website without the knowledge of the person who recorded it.
Timeline
Published on: 10/14/2022 19:15:00 UTC
Last modified on: 10/18/2022 19:29:00 UTC