DLL Hijacking Vulnerability in Bomgar Remote Support Software
CVE-2017-5996

7.8HIGH

Key Information:

Vendor

Beyondtrust

Status
Remote Support
Vendor
CVE Published:
26 October 2017

What is CVE-2017-5996?

The Bomgar Remote Support software prior to specified versions contains a vulnerability that allows for DLL hijacking due to inadequate permissions set on the %SYSTEMDRIVE%\ProgramData directory. This misconfiguration could enable an attacker to exploit the weakness and execute arbitrary code with the privileges of the vulnerable application, posing a risk to system security.

References

https://www.vsecurity.com/download/advisories/20171026-1.txt
x_refsource_MISC
http://www.securitytracker.com/id/1039679
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.