Description

A local privilege escalation vulnerability exists in Agnitum Outpost Internet Security 8.1 that allows an unprivileged user to execute arbitrary code with SYSTEM privileges. The flaw resides in the acs.exe component, which exposes a named pipe that accepts unauthenticated commands. By exploiting a directory traversal weakness in the pipe protocol, an attacker can instruct the service to load a malicious DLL from a user-controlled location. The DLL is then executed in the context of the privileged service.

INFO

Published Date :

2025-08-01T20:37:55.129Z

Last Modified :

2025-08-01T20:37:55.129Z

Source :

VulnCheck
AFFECTED PRODUCTS

The following products are affected by CVE-2013-10046 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2013-10046.

URL Resource
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/local/agnitum_outpost_acs.rb cve-icon cve-icon
https://www.exploit-db.com/exploits/27282 cve-icon cve-icon
https://www.exploit-db.com/exploits/28335 cve-icon cve-icon
https://www.vulncheck.com/advisories/agnitum-outpost-internet-security-local-priv-esc cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability