CVE-2018-14327
CVE-2018-14327
The installer for the Alcatel OSPREY3_MINI Modem component on EE EE40VB 4G mobile broadband modems with firmware before EE40_00_02.00_45 sets weak permissions (Everyone:Full Control) for the "Web Connecton\EE40" and "Web Connecton\EE40\BackgroundService" directories, which allows local users to gain privileges, as demonstrated by inserting a Trojan horse ServiceManager.exe file into the "Web Connecton\EE40\BackgroundService" directory.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencepacketstormsecurity.com/files/149492/EE-4GEE-Mini-Local-Privilege-Escalation.htmlunverifiedcve_referencewww.exploit-db.com/exploits/45501/unverifiedexploitdbwww.exploit-db.com/exploits/45501unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://blog.zerodaylab.com/2018/09/zerodaylab-discovers-ee-unquoted.htmlhttp://packetstormsecurity.com/files/149492/EE-4GEE-Mini-Local-Privilege-Escalation.htmlhttps://osandamalith.com/2018/09/17/ee-4gee-mini-local-privilege-escalation-vulnerability-cve-2018-14327/https://www.exploit-db.com/exploits/45501/http://www.securityfocus.com/bid/105385