mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 09:12:08 +00:00
909 B
909 B
CVE-2019-17388
Description
Weak file permissions applied to the Aviatrix VPN Client through 2.2.10 installation directory on Windows and Linux allow a local attacker to execute arbitrary code by gaining elevated privileges through file modifications.
POC
Reference
- https://docs.aviatrix.com/HowTos/UCC_Release_Notes.html
- https://docs.aviatrix.com/HowTos/UCC_Release_Notes.html
- https://immersivelabs.com/2019/12/04/aviatrix-vpn-client-vulnerability/
- https://immersivelabs.com/2019/12/04/aviatrix-vpn-client-vulnerability/
Github
No PoCs found on GitHub currently.