CVE-2014-5455
CVE-2014-5455 describes a local privilege-escalation via an unquoted service path in the ptservice service for PrivateTunnel (Windows) prior to v3.0 and OpenVPN Connect (Windows) before v3.1. A crafted program.exe placed in the %SYSTEMDRIVE% folder could be executed with elevated privileges by th...