extenua SilverSHielD 6.x fails to... CVE-2019-13069

7.2 AV AC AU C I A
发布: 2019-06-29
修订: 2020-10-29

extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a service.