Infotecs ViPNet Client 3.2.10 (15632) and previous versions, ViPNet Coordinator 3.2.10 (15632) and previous versions, ViPNet Personal Firewall 3.1 and previous versions, and ViPNet SafeDisk 4.1 (0.5643) and previous versions use weak permissions (Everyone: Full Control) for a folder under %PROGRAMFILES%\Infotecs, which allows local users to gain privileges via a Trojan horse (1) executable file or (2) DLL file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
infotecs vipnet client |
||
infotecs vipnet coordinator |
||
infotecs vipnet personal firewall |
||
infotecs vipnet safedisk |