How zoho assist breaks the Windows security model
My original plan for this post was to kick things off with a series on Windows Internals and Windows apps bug bounty hunting focusing on exploit code and not just the “interface exploits”. But while analyzing some applications, I came across a problem so strange and poorly recognized that it deserved attention. So, security research happened. This was the case with the Zoho Assist unattended agent. What appears to be a standard remote support tool is, in fact, an implementation with an architectural flaw that fundamentally breaks the Windows security model. ...