32 matches found
Design/Logic Flaw
Infotecs ViPNet Client and Coordinator before 4.3.2-42442 allow local users to gain privileges by placing a Trojan horse ViPNet update file in the update folder. The attack succeeds because of incorrect folder permissions in conjunction with a lack of integrity and authenticity checks...
CVE-2017-9606
Infotecs ViPNet Client and Coordinator before 4.3.2-42442 allow local users to gain privileges by placing a Trojan horse ViPNet update file in the update folder. The attack succeeds because of incorrect folder permissions in conjunction with a lack of integrity and authenticity checks...
CVE-2017-9606
Infotecs ViPNet Client and Coordinator before 4.3.2-42442 allow local users to gain privileges by placing a Trojan horse ViPNet update file in the update folder. The attack succeeds because of incorrect folder permissions in conjunction with a lack of integrity and authenticity checks...
CVE-2017-9606
Infotecs ViPNet Client and Coordinator before 4.3.2-42442 allow local users to gain privileges by placing a Trojan horse ViPNet update file in the update folder. The attack succeeds because of incorrect folder permissions in conjunction with a lack of integrity and authenticity checks...
CVE-2017-9606
CVE-2017-9606 affects Infotecs ViPNet Client and Coordinator prior to 4.3.2-42442. The vulnerability allows a local attacker to gain privileges by placing a Trojan horse ViPNet update file in the update folder. Root cause is incorrect folder permissions combined with insufficient integrity and au...
CVE-2017-9606
Infotecs ViPNet Client and Coordinator before 4.3.2-42442 allow local users to gain privileges by placing a Trojan horse ViPNet update file in the update folder. The attack succeeds because of incorrect folder permissions in conjunction with a lack of integrity and authenticity checks...
CVE-2013-3496. Local privilege escalation vulnerability in Infotecs products (ViPNet Client\Coordinator, SafeDisk, Personal Firewall)
CVE-2013-3496. Local privilege escalation vulnerability in Infotecs products ViPNet ClientCoordinator, SafeDisk, Personal Firewall CVE reference: CVE-2013-3496 Credit: Maksim Chudakov @MChudakov Andrey [email protected] Severity: Medium LocalRemote: Local Vulnerability Class:...
InfoTeCS applications weak permissions
Weak permissions for installation folder...
CVE-2013-3496
Infotecs ViPNet Client 3.2.10 15632 and earlier, ViPNet Coordinator 3.2.10 15632 and earlier, ViPNet Personal Firewall 3.1 and earlier, and ViPNet SafeDisk 4.1 0.5643 and earlier use weak permissions Everyone: Full Control for a folder under %PROGRAMFILES%\Infotecs, which allows local users to ga...
Design/Logic Flaw
Infotecs ViPNet Client 3.2.10 15632 and earlier, ViPNet Coordinator 3.2.10 15632 and earlier, ViPNet Personal Firewall 3.1 and earlier, and ViPNet SafeDisk 4.1 0.5643 and earlier use weak permissions Everyone: Full Control for a folder under %PROGRAMFILES%\Infotecs, which allows local users to ga...
CVE-2013-3496
Infotecs ViPNet Client 3.2.10 15632 and earlier, ViPNet Coordinator 3.2.10 15632 and earlier, ViPNet Personal Firewall 3.1 and earlier, and ViPNet SafeDisk 4.1 0.5643 and earlier use weak permissions Everyone: Full Control for a folder under %PROGRAMFILES%\Infotecs, which allows local users to ga...
CVE-2013-3496
The CVE-2013-3496 issue affects Infotecs ViPNet products (ViPNet Client 3.2.10 (15632) and earlier, ViPNet Coordinator 3.2.10 (15632) and earlier, ViPNet Personal Firewall 3.1 and earlier, ViPNet SafeDisk 4.1 (0.5643) and earlier) where the installation folder under %PROGRAMFILES%\Infotecs is cre...