The agent in OSSEC through 3.1.0 on Windows allows local users to gain NT AUTHORITY\SYSTEM access via Directory Traversal by leveraging full access to the associated OSSEC server.
References
Link | Resource |
---|---|
https://github.com/ossec/ossec-hids/issues/1585 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:21:56
Updated: 2022-10-03T16:21:56
Reserved: 2022-10-03T00:00:00
Link: CVE-2018-19666
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-11-29T08:29:00.397
Modified: 2019-01-04T16:08:45.607
Link: CVE-2018-19666
JSON object: View
Redhat Information
No data.
CWE