An issue exists in Faronics Insight 10.0.19045 on Windows. An unauthenticated attacker is able to upload any type of file to any location on the Teacher Console's computer, enabling a variety of different exploitation paths including code execution. It is also possible for the malicious user to chain this vulnerability with others to cause a deployed DLL file to immediately execute as NT AUTHORITY/SYSTEM.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
faronics insight 10.0.19045 |