CVE-2012-3483

This exploit leverages a directory traversal vulnerability in Tunnelblick to execute arbitrary commands with elevated privileges. It creates a malicious directory structure and symlink to trick the application into executing a payload that spawns a root shell.

This exploit leverages a race condition in Tunnelblick's SUID executable to achieve local privilege escalation. It manipulates file permissions and symlinks to execute arbitrary code as root.