HackDig : Dig high-quality web security articles for hackers

Asseco SEE iBank FX Client

The application is vulnerable to an elevation of privileges vulnerability which can be used by a simple user that can change the executable file with a binary of choice. The vulnerability exist due to the improper permissions, with the ‘F’ flag (full) for the ‘Everyone’ and ‘Users’ group, for the ‘RichClient.exe̵
Publish At:2014-08-13 01:55 | Read:4397 | Comments:0 | Tags:Internal asseco binary client default escalation everyone fx


Share high-quality web security related articles with you:)