Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in London Trust Media Private Internet Access (PIA) VPN Client v77 for Windows could allow an unauthenticated, local attacker to run executable files with elevated privileges. The vulnerability is due to insufficient implementation of access controls. The "Changelog" and "Help" options available from the system tray context menu spawn an elevated instance of the user's default web browser. An attacker could exploit this vulnerability by selecting "Run as Administrator" from the context menu of an executable file within the file browser of the spawned default web browser. This may allow the attacker to execute privileged commands on the targeted system.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
London Trust Media Private Internet Access VPN Client for Windows 安全漏洞
Vulnerability Description
London Trust Media Private Internet Access(PIA)VPN Client for Windows是一款基于Windows平台的用于匿名访问互联网的VPN客户端。 基于Windows平台的London Trust Media PIA VPN Client 77版本中存在安全漏洞,该漏洞源于程序没有充分的实现访问控制。本地攻击者可在文件浏览器中选择可执行性文件的右键菜单上的‘Run as Administrator’利用该漏洞在目标系统上执行特权命令。
CVSS Information
N/A
Vulnerability Type
N/A