CVE-2019-12572

CVE-2019-12572

A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client 1.0.2 (build 02363) for Windows could allow an authenticated, local attacker to run arbitrary code with elevated privileges. On startup, the PIA Windows service (pia-service.exe) loads the OpenSSL library from %PROGRAMFILES%Private Internet Accesslibeay32.dll. This library attempts to load the C:etcsslopenssl.cnf configuration file which does not exist. By default on Windows systems, authenticated users can create directories under C:. A low privileged user can create a C:etcsslopenssl.cnf configuration file to load a malicious OpenSSL engine library resulting in arbitrary code execution as SYSTEM when the service starts.

Source: CVE-2019-12572

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다