vendor:
Hide.Me VPN Client
by:
Unknown
7.5
CVSS
HIGH
Elevation of Privilege
276
CWE
Product Name: Hide.Me VPN Client
Affected Version From: 1.2.2004
Affected Version To: 1.2.2004
Patch Exists: NO
Related CWE:
CPE: a:eventure:hide.me_vpn_client:1.2.4
Platforms Tested: Windows 7 x86
2016
Hide.Me VPN Client – EoP: User to SYSTEM
The Hide.Me VPN Client installer creates a folder with insecure permissions, allowing any user to gain write access. This can be exploited by replacing binaries or planting malicious DLLs to elevate privileges from a regular user to SYSTEM. By overwriting the service executable, vpnsvc.exe, an attacker can achieve code execution with the highest privileges.
Mitigation:
The vendor should set appropriate permissions for the installation folder and ensure that only trusted users have write access. Users should also update to the latest version of the Hide.Me VPN Client.