mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-28 06:01:13 +01:00
800 B
800 B
CVE-2015-7378
Description
Panda Security URL Filtering before 4.3.1.9 uses a weak ACL for the "Panda Security URL Filtering" directory and installed files, which allows local users to gain SYSTEM privileges by modifying Panda_URL_Filteringb.exe.
POC
Reference
- http://packetstormsecurity.com/files/136607/Panda-Security-URL-Filtering-Privilege-Escalation.html
- https://www.exploit-db.com/exploits/39670/