Allele Security Alert
ASA-2019-00581, CVE-2019-17436, PAN-SA-2019-0037
Non-root users are able to overwrite root files on the file system
Palo Alto Networks
GlobalProtect Agent for Linux and Mac OS X before version 5.0.5
GlobalProtect Agent for Linux and Mac OS X before version 4.1.13
GlobalProtect Agent for Linux and Mac OS X version 5.0.5
GlobalProtect Agent for Linux and Mac OS X version 4.1.13
Proof of concept
A Local Privilege Escalation vulnerability exists in GlobalProtect Agent for Linux and Mac OSX that can allow non-root users to overwrite root files on the file system. Successful exploitation of this issue may allow a low-privileged local user to escalate their privileges on the system.
Hanno Heinrichs (CrowdStrike)
Local Privilege Escalation in GlobalProtect Agent for Linux and Mac OS
Palo Alto Networks Security Advisories: 15-October-2019
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: October 23, 2019