Vigil@nce - Pulse Secure Pulse Client : privilege escalation via Windows
septembre 2016 par Vigil@nce
This bulletin was written by Vigil@nce : https://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker can use Pulse Secure Pulse Client on Windows, in order
to escalate his privileges.
Impacted products : Pulse Secure Client.
Severity : 2/4.
Creation date : 27/07/2016.
DESCRIPTION OF THE VULNERABILITY
The Pulse Secure Pulse Client product can be installed on Windows.
However, a local attacker can use this client to gain
administrative privileges. Technical details are unknown.
An attacker can therefore use Pulse Secure Pulse Client on
Windows, in order to escalate his privileges.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
https://vigilance.fr/vulnerability/Pulse-Secure-Pulse-Client-privilege-escalation-via-Windows-20231