Hacking News N-Able's Take Control Agent Vulnerability Exposes Windows Systems to Privilege Escal

Hacking News N-Able's Take Control Agent Vulnerability Exposes Windows Systems to Privilege Escal - Printable Version

+- (https://hackmyride.com/forum)
+-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211)
+--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278)
+---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279)
+---- Thread: Hacking News N-Able's Take Control Agent Vulnerability Exposes Windows Systems to Privilege Escal (/showthread.php?tid=7586)

N-Able's Take Control Agent Vulnerability Exposes Windows Systems to Privilege Escal - The Hacker News - 09-14-2023

N-Able's Take Control Agent Vulnerability Exposes Windows Systems to Privilege Escal

A high-severity security flaw has been disclosed in N-Able's Take Control Agent that could be exploited by a local unprivileged attacker to gain SYSTEM privileges.
Tracked as CVE-2023-27470 (CVSS score: 8.8), the issue relates to a Time-of-Check to Time-of-Use (TOCTOU) race condition vulnerability, which, when successfully exploited, could be leveraged to delete arbitrary files on a Windows

https://thehackernews.com/2023/09/n-ables-take-control-agent.html