3 matches found
Seqrite End Point Security 7.4 - Privilege Escalation
Seqrite End Point Security 7.4 - Privilege Escalation Exploit Title: Seqrite End Point Security 7.4 - Privilege Escalation Date: 2018-09-13 Exploit Author: Hashim Jawad - @ihack4falafel Vendor Homepage: https://www.seqrite.com/ Tested on: Windows 7 Enterprise SP1 x64 CVE: CVE-2018-17775...
CVE-2018-17775
Seqrite End Point Security v7.4 has "Everyone: F" permission for %PROGRAMFILES%\Seqrite\Seqrite, which allows local users to gain privileges by replacing an executable file with a Trojan horse...
CVE-2018-17775
CVE-2018-17775 affects Seqrite End Point Security v7.4. The vulnerability arises from the installation directory %PROGRAMFILES%\Seqrite\Seqrite with overly permissive Everyone:F ACLs, enabling a local user to replace an executable and escalate to SYSTEM. Exploitation details exist in public sourc...