Ihack4Falafel

**Name of the Vulnerable Software and Affected Versions** Trend Micro VPN Proxy One Pro versions 5.8.1012 and below **Description** The issue is related to an arbitrary file overwrite or create attack, which can lead to a local Denial of Service (DoS) and, under specific conditions, elevation of privileges. It is also associated with the possibility of deleting arbitrary files in the system, potentially allowing an attacker to gain elevated privileges. **Recommendations** For versions 5.8.1012 and below, update to a version above 5.8.1012 to resolve the issue. At the moment, there is no information about additional mitigation measures for this specific vulnerability.

Name of the Vulnerable Software and Affected Versions: Docker Desktop versions prior to 4.31.0 Description: The issue is related to a configuration flaw in the exec-path Docker daemon config option, allowing a user in the docker-users group to cause a Windows Denial-of-Service in Windows containers mode. This is due to inadequate access control. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited. The vulnerability can be exploited through the `exec-path` Docker daemon config option, which is a part of the Docker Desktop platform for developing and delivering containerized applications. Recommendations: For Docker Desktop versions prior to 4.31.0, update to version 4.31.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the `exec-path` Docker daemon config option to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Trend Micro VPN versions 5.8.1012 and below Trend Micro VPN Proxy One Pro (affected versions not specified) **Description** The issue is related to incorrect link resolution before accessing a file in the DEP Manager component of Trend Micro VPN Proxy One Pro for Windows. This can allow an attacker to elevate their privileges under specific conditions. The vulnerability may lead to arbitrary file overwrite, resulting in privilege escalation. **Recommendations** For Trend Micro VPN versions 5.8.1012 and below, update to a version above 5.8.1012 to resolve the issue. For Trend Micro VPN Proxy One Pro, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Trend Micro VPN Proxy Pro versions 5.2.1026 and below **Description** The issue involves overly permissive folders in a key directory, which could allow a local attacker to obtain privilege escalation on an affected system. **Recommendations** For versions 5.2.1026 and below, consider restricting access to the key directory until a patch is available. As a temporary workaround, review and adjust the permissions of the overly permissive folders to prevent local privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows AppX Deployment Extensions (affected versions not specified) **Description** The issue is related to improper privilege management in the Windows AppX Deployment Extensions, allowing an authenticated attacker to elevate privileges by running a specially crafted application. This could result in access to system files. The security update corrects how AppX Deployment Extensions manages privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** KioWare Server versions 4.9.6 and older **Description** The issue concerns weak folder permissions in the default installation directory, granting any user full access to the directory and its sub-folders. Additionally, a service called KWSService runs as Localsystem, allowing any user to potentially escalate privileges to NT AUTHORITYSYSTEM by substituting the service's binary with a malicious one. **Recommendations** For KioWare Server versions 4.9.6 and older, consider restricting access to the installation directory and its sub-folders to prevent unauthorized modifications. As a temporary workaround, monitor the KWSService for any suspicious activity and consider disabling it until a patch is available. Restrict access to the service's binary to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Seqrite End Point Security version 7.4 **Description** The issue allows local users to gain privileges by replacing an executable file with a Trojan horse, due to the "Everyone: (F)" permission for %PROGRAMFILES%SeqriteSeqrite. **Recommendations** For Seqrite End Point Security version 7.4, consider restricting access to the %PROGRAMFILES%SeqriteSeqrite directory to prevent local users from replacing executable files. As a temporary workaround, monitor the directory for any unauthorized changes to executable files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** PCProtect Anti-Virus version 4.8.35 **Description** The issue allows local users to gain privileges by replacing an executable file with a Trojan horse due to "Everyone: (F)" permission for %PROGRAMFILES(X86)%PCProtect. **Recommendations** For PCProtect Anti-Virus version 4.8.35, consider restricting access to the %PROGRAMFILES(X86)%PCProtect directory to prevent local users from replacing executable files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** MediaComm Zip-n-Go versions prior to 4.95 **Description** The issue is related to a buffer overflow that can be triggered by a crafted file. **Recommendations** For versions prior to 4.95, update to version 4.95 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Easy File Sharing (EFS) Web Server version 7.2 **Description** The issue is related to a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This can be achieved by sending a malicious login request to the 'forum.ghp' endpoint. **Recommendations** For Easy File Sharing (EFS) Web Server version 7.2, consider disabling the login functionality to the 'forum.ghp' endpoint until a patch is available. Restrict access to this endpoint to minimize the risk of exploitation.