| 제목 | Telerik Fiddler v5.0.20182.28034 Local Privilege Escalation |
|---|
| 설명 | A vulnerability was found in Telerik Fiddler v5.0.20182.28034. The feature affected is Fiddler's Win8 Loopback Exemptions. The feature mentioned requires administrator privileges, leading to the potential impact of local privilege escalation because Fiddler's installation is placed in the AppData folder which can be accessed publicly. Since no integrity check of the executable happens during the life cycle of the process, replacing the EnableLoopback.exe from the AppData folder will allow privilege escalation once the Win8 Loopback Exemptions feature is ran. CVE-2019-12097 was assigned to the vulnerability. |
|---|
| 원천 | ⚠️ https://www.telerik.com/download/fiddler |
|---|
| 사용자 | nathunandwani (UID 862) |
|---|
| 제출 | 2019. 05. 28. PM 02:55 (7 연령 ago) |
|---|
| 모더레이션 | 2019. 05. 29. PM 01:35 (23 hours later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 135671 [Telerik Fiddler 5.0.20182.28034 Win8 Loopback Exemption 권한 상승] |
|---|
| 포인트들 | 20 |
|---|