CVE-2017-13779
GSTN_offline_tool (GSTN Offline Utility) prior to version 1.2 stores winstart-server.vbs in C:\GST Offline Tool with insecure permissions, enabling local privilege escalation by replacing the VBScript with arbitrary code (e.g., a reverse shell). Affected: GSTN Offline Utility before 1.2. Root cau...