Vulnerability: Arbitrary File Deletion via IMFForceDelete.sys in IObit Malware Fighter 6.2

Vulnerability: Arbitrary File Deletion via IMFForceDelete.sys in IObit Malware Fighter 6.2

CVE-2019-6494 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:P

IMFForceDelete.sys in IObit Malware Fighter 6.2 allows a low privileged user to send IOCTL 0x8016E000 along with a user defined string to a file; that file will be promptly deleted regardless of access controls.

Learn more about our User Device Pen Test.