CVE-2018-7484

Name of the Vulnerable Software and Affected Versions PureVPN versions through 5.19.4.0

Description An issue was discovered where the client installation grants the Everyone group Full Control permission to the installation directory. The PureVPNService.exe service, which runs under NT AuthoritySYSTEM privileges, tries to load several dynamic-link libraries using relative paths instead of the absolute path. This makes the application susceptible to privilege escalation through DLL hijacking.

Recommendations For PureVPN versions through 5.19.4.0, consider restricting write access to the installation directory to prevent DLL hijacking. As a temporary workaround, ensure that all dynamic-link libraries are loaded using absolute paths to prevent privilege escalation.