Allele Security Alert
ASA-2019-00582, CVE-2019-17435, PAN-SA-2019-0036
Local Privilege Escalation vulnerability
Palo Alto Networks
GlobalProtect Agent for Windows before version 5.0.4
GlobalProtect Agent for Windows before version 4.1.13
GlobalProtect Agent for Windows version 5.0.4
GlobalProtect Agent for Windows version 4.1.13
Proof of concept
A Local Privilege Escalation vulnerability exists in the GlobalProtect Agent for Windows auto-update feature that can allow for modification of a GlobalProtect Agent MSI installer package on disk before installation. Successful exploitation of this issue may allow a low-privileged local user to escalate their privileges to the System user.
Hanno Heinrichs (CrowdStrike)
Local Privilege Escalation in GlobalProtect Agent for Windows
Palo Alto Networks Security Advisories: 15-October-2019
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: October 23, 2019