EE 4GEE WiFi Mini CVE-2018-14327 Local Privilege Escalation Vulnerability
BID:105385
CVE-2018-14327 |Info
EE 4GEE WiFi Mini CVE-2018-14327 Local Privilege Escalation Vulnerability
| Bugtraq ID: | 105385 |
| Class: | Input Validation Error |
| CVE: |
CVE-2018-14327 |
| Remote: | No |
| Local: | Yes |
| Published: | Sep 17 2018 12:00AM |
| Updated: | Sep 17 2018 12:00AM |
| Credit: | Osanda Malith Jayathissa |
| Vulnerable: |
EE 4GEE WiFi Mini 0 |
| Not Vulnerable: |
EE 4GEE WiFi Mini EE40_00_02.00_45 |
Discussion
EE 4GEE WiFi Mini CVE-2018-14327 Local Privilege Escalation Vulnerability
EE 4GEE WiFi Mini is prone to a local privilege-escalation vulnerability.
Local attackers may exploit this issue to gain elevated system privileges.
Versions prior to 4GEE WiFi Mini EE40_00_02.00_45 are vulnerable.
EE 4GEE WiFi Mini is prone to a local privilege-escalation vulnerability.
Local attackers may exploit this issue to gain elevated system privileges.
Versions prior to 4GEE WiFi Mini EE40_00_02.00_45 are vulnerable.
Exploit / POC
EE 4GEE WiFi Mini CVE-2018-14327 Local Privilege Escalation Vulnerability
The researcher who discovered this issue has created a proof-of-concept. Please see the references for more information.
The researcher who discovered this issue has created a proof-of-concept. Please see the references for more information.
Solution / Fix
EE 4GEE WiFi Mini CVE-2018-14327 Local Privilege Escalation Vulnerability
Solution:
Reportedly, this issue is fixed; however, Symantec has not confirmed this. Please contact the vendor for more information.
Solution:
Reportedly, this issue is fixed; however, Symantec has not confirmed this. Please contact the vendor for more information.