Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

WindScribe VPN 1.81 Privilege Escalation

From: Emin Ghuliev <drmint80 () gmail com>
Date: Fri, 25 May 2018 00:41:34 +0400
Vulnerability Details:

WindScribe VPN uses OpenVPN client for connections. Also it creates a
system process named WindScribeService.exe
This process (WindScribeService.exe) establishes a NamedPipe endpoint that
allows WindScribe VPN process to connect and execute OpenVPN process or
other processes (like taskill etc.). Attacker can run any malicious process
in system privilege through this NamedPipe.


Also I've write about it here:
http://sqlulz.blogspot.com/2018/05/windscribe-vpn-privilege-escalation.html



Emin Ghuliev - drmint80

_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/
Previous By Date Next
Previous By Thread Next

Current thread: