PT-2018-10598 · Windscribe +1 · Windscribe +1

Name of the Vulnerable Software and Affected Versions: Windscribe version 1.81 Description: The issue concerns the VPN component in Windscribe, which uses the OpenVPN client and creates a system process named WindScribeService.exe. This process establishes a named pipe endpoint,...

WindScribe Denial of Service Vulnerability

WindScribe is a suite of VPN software for anonymously connecting to the Internet. A security vulnerability exists in WindScribe version 1.81. An attacker can exploit this vulnerability with the help of \pipe\WindscribeService URL to gain access or cause a denial of service. \pipe\WindscribeServic...

Windscribe 1.81 Code Execution

Vulnerability description: The VPN component in Windscribe 1.81 uses the OpenVPN client for connections. Also, it creates a WindScribeService.exe system process that establishes a \.\pipe\WindscribeService named pipe endpoint that allows the Windscribe VPN process to connect and execute an OpenVP...

Design/Logic Flaw

Windscribe 1.81 creates a named pipe with a NULL DACL that allows Everyone users to gain privileges or cause a denial of service via \.\pipe\WindscribeService...

CVE-2018-11334

Windscribe 1.81 creates a named pipe with a NULL DACL that allows Everyone users to gain privileges or cause a denial of service via \.\pipe\WindscribeService...

CVE-2018-11334

Windscribe 1.81 creates a named pipe with a NULL DACL that allows Everyone users to gain privileges or cause a denial of service via \.\pipe\WindscribeService...

CVE-2018-11334

Windscribe 1.81 contains a vulnerability where a named pipe (\.\pipe\WindscribeService) is created with a NULL DACL, allowing Everyone to gain privileges or cause a denial of service. This is a local issue stemming from an overly permissive named pipe ACL, enabling privilege escalation or disrupt...

CVE-2018-11334

Windscribe 1.81 creates a named pipe with a NULL DACL that allows Everyone users to gain privileges or cause a denial of service via \.\pipe\WindscribeService...

CVE-2018-10646

CyberGhost 6.5.0.3180 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "CG6Service" service. This service establishes a NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "ConnectToVpnServer" method...

TunnelBear for Windows Elevation of Privilege Vulnerability

TunnelBear for Windows is a Windows-based VPN software for anonymous access to restricted networks. A privilege extraction vulnerability in TunnelBear version 3.2.0.6 for Windows-based platforms stems from a NetNamedPipe endpoint created by the TunnelBearMaintenance service that allows arbitrary...

CVE-2018-10381

TunnelBear 3.2.0.6 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "TunnelBearMaintenance" service. This service establishes a NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "OpenVPNConnect"...

NordVPN Elevation of Privilege Vulnerability

NordVPN for Windows is a Windows-based VPN software for anonymous access to the Internet. A lifting vulnerability in version 6.12.7.0 of NordVPN for Windows-based platforms stems from a NetNamedPipe endpoint created by the 'nordvpn-service' service that allows arbitrary installed applications to...

CVE-2018-10170

NordVPN 6.12.7.0 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "nordvpn-service" service. This service establishes an NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "Connect" method accepts a...

CVE-2018-9851

In Gxlcms QY v1.0.0713, Lib\Lib\Action\Admin\TplAction.class.php allows remote attackers to read any file via a modified pathname in an Admin-Tpl request, as demonstrated by use of '|' instead of '/' as a directory separator, in conjunction with a ".." sequence...

CVE-2014-1226

The pipeinitterminal function in main.c in s3dvt allows local users to gain privileges by leveraging setuid permissions and usage of bash 4.3 and earlier. NOTE: This vulnerability exists because of an incomplete fix for CVE-2013-6876...

CVE-2018-1234

RSA Authentication Agent version 8.0.1 and earlier for Web for IIS is affected by a problem where access control list ACL permissions on a Windows Named Pipe were not sufficient to prevent access by unauthorized users. The attacker with local access to the system can exploit this vulnerability to...

CVE-2018-1234

RSA Authentication Agent version 8.0.1 and earlier for Web for IIS is affected by a problem where access control list ACL permissions on a Windows Named Pipe were not sufficient to prevent access by unauthorized users. The attacker with local access to the system can exploit this vulnerability to...

Authentication flaw

RSA Authentication Agent version 8.0.1 and earlier for Web for IIS is affected by a problem where access control list ACL permissions on a Windows Named Pipe were not sufficient to prevent access by unauthorized users. The attacker with local access to the system can exploit this vulnerability to...

CVE-2018-1234

RSA Authentication Agent version 8.0.1 and earlier for Web for IIS is affected by a problem where access control list ACL permissions on a Windows Named Pipe were not sufficient to prevent access by unauthorized users. The attacker with local access to the system can exploit this vulnerability to...

CVE-2018-1234

CVE-2018-1234 affects RSA Authentication Agent for Web for IIS versions 8.0.1 and earlier. The root cause is insufficient ACL protections on a Windows Named Pipe, allowing a local attacker to read configuration properties of the authentication agent. Exploitation requires local access; no remote ...