Race Condition Exploit: Arbitrary Code Execution in Kaseya Virtual System Administrator Agent

CVE-2017-12410 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

It is possible to exploit a Time of Check & Time of Use (TOCTOU) vulnerability by winning a race condition when Kaseya Virtual System Administrator agent 9.3.0.11 and earlier tries to execute its binaries from working and/or temporary folders. Successful exploitation results in the execution of arbitrary programs with "NT AUTHORITY\SYSTEM" privileges.

Learn more about our Web Application Penetration Testing UK.