5 matches found
Privilege escalation
In Windscribe v1.83 Build 20, 'WindscribeService' has an Unquoted Service Path that facilitates privilege escalation...
CVE-2020-27518
All versions of Windscribe VPN for Mac and Windows = v2.02.10 contain a local privilege escalation vulnerability in the WindscribeService component. A low privilege user could leverage several openvpn options to execute code as root/SYSTEM...
Windscribe WindscribeService Named Pipe Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windscribe WindscribeService Named Pipe Privilege Escalation', 'Description' = %q The Windscribe VPN client application for Windows makes use of ...
PT-2018-10598 · Windscribe +1 · Windscribe +1
Name of the Vulnerable Software and Affected Versions: Windscribe version 1.81 Description: The issue concerns the VPN component in Windscribe, which uses the OpenVPN client and creates a system process named WindScribeService.exe. This process establishes a named pipe endpoint,...
WindScribe Denial of Service Vulnerability
WindScribe is a suite of VPN software for anonymously connecting to the Internet. A security vulnerability exists in WindScribe version 1.81. An attacker can exploit this vulnerability with the help of \pipe\WindscribeService URL to gain access or cause a denial of service. \pipe\WindscribeServic...