2 matches found
CVE-2017-7180
Net Monitor for Employees Pro through 5.3.4 has an unquoted service path, which allows a Security Feature Bypass of its documented "Block applications" design goal. The local attacker must have privileges to write to program.exe in a protected directory, such as the %SYSTEMDRIVE% directory, and...
CVE-2017-7180
CVE-2017-7180 affects Net Monitor for Employees Pro up to version 5.3.4. The issue is an unquoted service path for the service "Net Monitor for Employees Agent", allowing a local attacker with write access to program.exe in a protected directory (e.g., SYSTEMDRIVE) to bypass the security feature ...