| عنوان | Telerik Fiddler v5.0.20182.28034 Local Privilege Escalation |
|---|
| الوصف | A vulnerability was found in Telerik Fiddler v5.0.20182.28034. The feature affected is Fiddler's Win8 Loopback Exemptions. The feature mentioned requires administrator privileges, leading to the potential impact of local privilege escalation because Fiddler's installation is placed in the AppData folder which can be accessed publicly. Since no integrity check of the executable happens during the life cycle of the process, replacing the EnableLoopback.exe from the AppData folder will allow privilege escalation once the Win8 Loopback Exemptions feature is ran. CVE-2019-12097 was assigned to the vulnerability. |
|---|
| المصدر | ⚠️ https://www.telerik.com/download/fiddler |
|---|
| المستخدم | nathunandwani (UID 862) |
|---|
| ارسال | 28/05/2019 02:55 PM (7 سنوات منذ) |
|---|
| الاعتدال | 29/05/2019 01:35 PM (23 hours later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 135671 [Telerik Fiddler 5.0.20182.28034 Win8 Loopback Exemption تجاوز الصلاحيات] |
|---|
| النقاط | 20 |
|---|