Panda Security Dome Local Privilege Escalation Vulnerability via Junction Abuse
Panda Security Dome has a local privilege escalation vulnerability. Local attackers can use this to gain higher privileges on affected systems. To exploit this issue, an attacker needs to run low-privileged code on the system first.
The problem lies in Hotspot Shield. An attacker can make a junction to delete any files using the application. This lets the attacker escalate privileges and run any code as SYSTEM. It was identified as ZDI-CAN-23478.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
watchguard panda dome 22.02.01 |