ID CVE-2017-7643
Summary Proxifier for Mac before 2.19 allows local users to gain privileges via the first parameter to the KLoader setuid program.
References
Vulnerable Configurations
  • cpe:2.3:a:proxifier:proxifier:1.1.6:*:*:*:*:macos:*:*
    cpe:2.3:a:proxifier:proxifier:1.1.6:*:*:*:*:macos:*:*
  • cpe:2.3:a:proxifier:proxifier:1.3.5:*:*:*:*:macos:*:*
    cpe:2.3:a:proxifier:proxifier:1.3.5:*:*:*:*:macos:*:*
  • cpe:2.3:a:proxifier:proxifier:1.3.7:*:*:*:*:macos:*:*
    cpe:2.3:a:proxifier:proxifier:1.3.7:*:*:*:*:macos:*:*
  • cpe:2.3:a:proxifier:proxifier:2.14:*:*:*:*:macos:*:*
    cpe:2.3:a:proxifier:proxifier:2.14:*:*:*:*:macos:*:*
  • cpe:2.3:a:proxifier:proxifier:2.18:*:*:*:*:macos:*:*
    cpe:2.3:a:proxifier:proxifier:2.18:*:*:*:*:macos:*:*
CVSS
Base: 7.2 (as of 15-07-2021 - 20:40)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:C/A:C
refmap via4
exploit-db 41854
fulldisc 20170411 CVE-2017-7643 Local root privesc in Proxifier for Mac <= 2.18
misc https://m4.rkw.io/blog/cve20177643-local-root-privesc-in-proxifier-for-mac--218.html
Last major update 15-07-2021 - 20:40
Published 14-04-2017 - 14:59
Last modified 15-07-2021 - 20:40
Back to Top