CVE-2020-13162
HIGHPulse Secure Client <9.1.6-5.3 R70 - Privilege Escalation
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2020-13162. PoCs published by redtimmy.
AI-analyzed exploit summary This is a working privilege escalation exploit for Pulse Secure Windows Client <9.1.6 (CVE-2020-13162). It leverages a TOCTOU (Time-of-Check Time-of-Use) race condition to replace a verified MSI file with a malicious one, achieving local privilege escalation.
Description
A time-of-check time-of-use vulnerability in PulseSecureService.exe in Pulse Secure Client versions prior to 9.1.6 down to 5.3 R70 for Windows (which runs as NT AUTHORITY/SYSTEM) allows unprivileged users to run a Microsoft Installer executable with elevated privileges.
Exploits (1)
This is a working privilege escalation exploit for Pulse Secure Windows Client <9.1.6 (CVE-2020-13162). It leverages a TOCTOU (Time-of-Check Time-of-Use) race condition to replace a verified MSI file with a malicious one, achieving local privilege escalation.
References (10)
Scores
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H