A virtual private network (VPN) used by NASA, Shell, and BT has been found to have multiple vulnerabilities.
Weaknesses in the Aviatrix VPN were detected by Immersive Labs researcher and content engineer Alex Seymour on October 7, 2019.
The multiple local privilege escalation vulnerabilities Seymour discovered would have allowed an attacker who already had access to a machine to escalate privileges and achieve anything they wanted. With the extra level of privileges, the attacker would have been able to dive into files, folders, and network services that the user would not previously have been able to access.
5 December 2019
Latest Blog posts
An investment into the cyber skilled workforce of the future
11 June 2021
Patch Newsday – 8 June 2021
9 June 2021
Frustrations of an AppSec Engineer Part 2: Lost in Translation
21 May 2021
Welcome to the DarkSide: where IT and OT Collide
20 May 2021
Frustrations of an AppSec Engineer Part 1: Collaboration, Collaboration, Collaboration
13 May 2021
It makes you WannaCry: Anti-Ransomware Day 2021
12 May 2021