Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.9
CVSSv2

CVE-2014-5455

Published: 25/08/2014 Updated: 01/06/2020
CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4
VMScore: 696
Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Openvpn

Vulnerability Summary

Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 (Windows) and OpenVPN Connect version 3.1 (Windows) allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

openvpn openvpn 2.1.28.0

privatetunnel privatetunnel 2.3.8

Vendor Advisories

HP: SUPPORT COMMUNICATION- SECURITY BULLETIN HPSBGN3551 rev. 2- HP Hotkey, Escalation of Privilege
Hotkey Support service used an unquoted service path An attacker who had physical access to the system may gain elevated privileges by inserting an executable file in the path of the affected service ...

Exploits

Exploit DB: OpenVPN Private Tunnel Core Service - Unquoted Service Path Privilege Escalation
OpenVPN Private Tunnel Core Service Unquoted Service Path Elevation Of Privilege Vendor: OpenVPN Technologies, Inc Product web page: wwwopenvpnnet Affected version: 21280 (PrivateTunnel 238) Summary: Private Tunnel is a new approach to true Internet security creating a Virtual Private Tunnel (VPT) or Virtual Private Network (VPN) ...

Github Repositories

https://github.com/Ontothecloud/CWE-428

Unquoted Search Path or Element | Fixing Unquoted Service Paths Enumeration Vulnerability

CWE-428 Unquoted Search Path or Element | Fixing Unquoted Service Paths Enumeration Vulnerability cwemitreorg/data/definitions/428html PowerShell: Fixing Unquoted Service Paths (Complete) wwwryanandjeffshowcom/blog/2013/04/11/powershell-fixing-unquoted-service-paths-complete/ Fix Unquoted Service Path for Windows Services (Intune) powershellisfuncom

https://github.com/Ontothecloud/cwe-428

Unquoted Search Path or Element | Fixing Unquoted Service Paths Enumeration Vulnerability

CWE-428 Unquoted Search Path or Element | Fixing Unquoted Service Paths Enumeration Vulnerability cwemitreorg/data/definitions/428html PowerShell: Fixing Unquoted Service Paths (Complete) wwwryanandjeffshowcom/blog/2013/04/11/powershell-fixing-unquoted-service-paths-complete/ Fix Unquoted Service Path for Windows Services (Intune) powershellisfuncom

References

CWE-428http://osvdb.org/show/osvdb/109007http://packetstormsecurity.com/files/127439/OpenVPN-Private-Tunnel-Privilege-Escalation.htmlhttp://www.exploit-db.com/exploits/34037http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5192.phphttps://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05325943https://github.com/CVEProject/cvelist/pull/3909https://github.com/CVEProject/cvelist/pull/3909/commits/ace34f1cf94602f31760d3eb7ae68e17df8f914dhttps://nvd.nist.govhttps://github.com/Ontothecloud/CWE-428https://www.exploit-db.com/exploits/34037/https://support.hp.com/us-en/document/c05325943
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook