ProtonVPN, NordVPN Flaws Open Door to Privilege Escalation

UPDATE A pair of vulnerabilities in the ProtonVPN and NordVPN VPN clients have been uncovered, which allow attackers to execute code as an administrator on targeted Microsoft Windows machines. In both cases CVE-2018-3952 NordVPN and CVE-2018-4010 ProntonVPN, the clients have the same design,...

CVE-2018-3952

An exploitable code execution vulnerability exists in the connect functionality of NordVPN 6.14.28.0. A specially crafted configuration file can cause a privilege escalation, resulting in the execution of arbitrary commands with system privileges...

CVE-2018-3952

CVE-2018-3952 affects NordVPN 6.14.28.0. Two-part design: a GUI (standard user) communicates with a service (system privileges) that executes OpenVPN with the user configuration. Root cause: insufficient validation of OpenVPN config lines allows injection via quoted options (e.g., "script-securit...

CVE-2018-3952

creationtimestamp| type| source ---|---|--- 2018-09-07 14:47:41+00:00| seen| https://t.me/ctinow/2186...

Vulnerability Spotlight: CVE-2018-3952 / CVE-2018-4010 - Multi-provider VPN Client Privilege Escalation Vulnerabilities

Discovered by Paul Rascagneres. Overview Cisco Talos has discovered two similar vulnerabilities in the ProtonVPN and NordVPN VPN clients. The vulnerabilities allow attackers to execute code as an administrator on Microsoft Windows operating systems from a standard user. The vulnerabilities were...