The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) prior to 7.9.1 contains a vulnerability in the ITM application server's WriteImage API. The vulnerability allows an anonymous remote malicious user to execute arbitrary code with local administrator privileges. The vulnerability is caused by improper deserialization.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
proofpoint insider threat management server |