CVE-2022-24141

Name of the Vulnerable Software and Affected Versions iTop VPN version 3.2

Description The issue arises from the iTopVPNmini.exe component trying to connect to a named pipe called datastate iTopVPN Pipe Server in a loop. An attacker can exploit this by opening a named pipe with the same name, allowing them to gain the token of another user. This is achieved by listening for connections and abusing the ImpersonateNamedPipeClient function.

Recommendations For iTop VPN version 3.2, consider disabling the iTopVPNmini.exe component until a patch is available to prevent potential exploitation. Restrict access to the named pipe datastate iTopVPN Pipe Server to minimize the risk of an attacker gaining another user's token. At the moment, there is no information about a newer version that contains a fix for this vulnerability.