46 matches found
CVE-2020-5180
Viscosity 1.8.2 on Windows and macOS allows an unprivileged user to set a subset of OpenVPN parameters, which can be used to load a malicious library into the memory of the OpenVPN process, leading to limited local privilege escalation. When a VPN connection is initiated using a TLS/SSL client...
Design/Logic Flaw
Viscosity 1.8.2 on Windows and macOS allows an unprivileged user to set a subset of OpenVPN parameters, which can be used to load a malicious library into the memory of the OpenVPN process, leading to limited local privilege escalation. When a VPN connection is initiated using a TLS/SSL client...
CVE-2020-5180
Viscosity 1.8.2 on Windows and macOS allows an unprivileged user to set a subset of OpenVPN parameters, which can be used to load a malicious library into the memory of the OpenVPN process, leading to limited local privilege escalation. When a VPN connection is initiated using a TLS/SSL client...
CVE-2020-5180
CVE-2020-5180 affects Viscosity 1.8.2 on Windows and macOS. An unprivileged user can set a subset of OpenVPN parameters, enabling loading of a malicious library into the memory of the OpenVPN process and causing limited local privilege escalation. When a VPN connection starts with a TLS/SSL clien...
CVE-2012-4284
A Privilege Escalation vulnerability exists in Viscosity 1.4.1 on Mac OS X due to a path name validation issue in the setuid-set ViscosityHelper binary, which could let a remote malicious user execute arbitrary code...
Privilege escalation
A Privilege Escalation vulnerability exists in Viscosity 1.4.1 on Mac OS X due to a path name validation issue in the setuid-set ViscosityHelper binary, which could let a remote malicious user execute arbitrary code...
DSquare Exploit Pack: D2SEC_VISCOSITY
Name| d2secviscosity ---|--- CVE| CVE-2012-4284 Exploit Pack| D2ExploitPack Description| d2secviscosity Notes|...
CVE-2012-4284
A Privilege Escalation vulnerability exists in Viscosity 1.4.1 on Mac OS X due to a path name validation issue in the setuid-set ViscosityHelper binary, which could let a remote malicious user execute arbitrary code...
CVE-2012-4284
CVE-2012-4284 describes a privilege-escalation vulnerability in Viscosity 1.4.1 for Mac OS X. The issue stems from a path-name validation flaw in the setuid-root ViscosityHelper binary, which could let a remote attacker cause arbitrary code execution with root privileges. Documents identify Visco...
Viscosity 1.6.7 Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits Exploit Title: Viscosity for Windows 1.6.7 Privilege Escalation Date: 31.01.2017 Software Link: https://www.sparklabs.com/ Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category:...
Viscosity 1.6.7 - Local Privilege Escalation
Exploit Title: Viscosity for Windows 1.6.7 Privilege Escalation Date: 31.01.2017 Software Link: https://www.sparklabs.com/ Exploit Author: Kacper Szurek Contact: https://twitter.com/KacperSzurek Website: https://security.szurek.pl/ Category: local 1. Description It is possible to execute openvpn...
Viscosity OpenVPN 2.3 Privilege Escalation Vulnerability
Viscosity Open VPN version 2.3 suffers from an unquoted service path local privilege escalation vulnerability. Title : Viscosity Open VPN 2.3 Privilege Escalation Author : Ajay Gowtham aka AJOXR Tested on : Windows 10 Latest version x64 bit Software :...
Viscosity Open VPN Privilege Vulnerability
Viscosity Open VPN is an OpenVPN client for Mac. Viscosity Open VPN version 2.3 suffers from a privilege-raising vulnerability that can be exploited by local attackers to gain administrator privileges...
Viscosity Open VPN 2.3 Privilege Escalation
Title : Viscosity Open VPN 2.3 Privilege Escalation Date : 28/11/2016 Author : Ajay Gowtham aka AJOXR Tested on : Windows 10 Latest version x64 bit Software : https://www.sparklabs.com/downloads/Viscosity%20Installer.exe Vulnerability Description: When the Viscosity VPN software is installed a...
OS X Viscosity OpenVPN Client - Local Root Exploit
No description provided by source. !/bin/sh Viscatory zx2c4 After the hullabaloo from the Tunnelblick local root, savy Mac users began defending Viscosity, another OS X VPN client. They figured, since they spent money on Viscosity, surely it would be better designed than the free open-source...
Viscosity VPN Client Detection
The remote host has the Viscosity VPN client installed. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid65701; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/02/06"; scriptxrefname:"IAVT", value:"0001-T-0918";...
Viscosity ViscosityHelper Symlink Attack Local Privilege Escalation
The remote host has a version of Viscosity VPN client installed that has a path name validation flaw in the setuid-set ViscosityHelper binary. This flaw can be exploited to execute arbitrary code with root privileges. C Tenable Network Security, Inc. include"compat.inc"; if description...
Viscosity VPN Client Detection (Mac OS X)
The remote host has the Viscosity VPN client installed. TRUSTED...
Viscosity setuid-set ViscosityHelper Privilege Escalation
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...
Viscosity - setuid-set ViscosityHelper Privilege Escalation (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...