CVE-2017-16637

Name of the Vulnerable Software and Affected Versions Vectura Perfect Privacy VPN Manager versions 1.10.10 through 1.10.11

Description A critical error occurs in the software when resetting network data via the client with an active VPN connection, leading to a crash of the FrmAdvancedProtection component. Although the component crashes, the software process continues to run with errors and corruptions, creating an insecure mode. This issue can be exploited by local attackers.

Recommendations For versions 1.10.10 and 1.10.11, as a temporary workaround, consider disabling the FrmAdvancedProtection component until a patch is available to prevent the software from running in an insecure mode. At the moment, there is no information about a newer version that contains a fix for this vulnerability.