Buffer Overflow Vulnerability in CyberArk Endpoint Privilege Manager Allows Privilege Escalation and System Crash

Buffer Overflow Vulnerability in CyberArk Endpoint Privilege Manager Allows Privilege Escalation and System Crash

CVE-2019-9627 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

A buffer overflow in the kernel driver CybKernelTracker.sys in CyberArk Endpoint Privilege Manager versions prior to 10.7 allows an attacker (without Administrator privileges) to escalate privileges or crash the machine by loading an image, such as a DLL, with a long path.

Learn more about our Web Application Penetration Testing UK.