CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2015-7378 – Panda Security URL Filtering < 4.3.1.9 - Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2015-7378
Panda Security URL Filtering before 4.3.1.9 uses a weak ACL for the "Panda Security URL Filtering" directory and installed files, which allows local users to gain SYSTEM privileges by modifying Panda_URL_Filteringb.exe. Panda Security URL Filtering en versiones anteriores a 4.3.1.9 utiliza una ACL débil para el directorio "Panda Security URL Filtering" y archivos instalados, lo que permite a usuarios locales obtener privilegios de SYSTEM modificando Panda_URL_Filteringb.exe. • https://www.exploit-db.com/exploits/39670 http://packetstormsecurity.com/files/136607/Panda-Security-URL-Filtering-Privilege-Escalation.html http://seclists.org/fulldisclosure/2016/Apr/25 • CWE-276: Incorrect Default Permissions •