cve/CVE-2024-3459.md at c052d0d6949679697108fa931a00cd4220694869

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-31 10:40:54 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

KioWare for Windows (versions all through 8.34) allows to escape the environment by downloading PDF files, which then by default are opened in an external PDF viewer. By using built-in functions of that viewer it is possible to launch a web browser, search through local files and, subsequently, launch any program with user privileges.

POC

Reference

No PoCs from references.

Github

https://github.com/DojoSecurity/DojoSecurity
https://github.com/afine-com/research

903 B Raw Blame History

CVE-2024-3459

Description

POC

Reference

Github

903 B

Raw Blame History