Zero-Day Advisory

Fortinet Discovers VyprVPN Unquoted Service Path Privilege Escalation Vulnerability

Summary

Fortinet's FortiGuard Labs has discovered an unquoted service path privilege escalation vulnerability in VyprVPN.

VyprVPN is a VPN app which secures your Internet traffic automatically when connecting to unknown Wi-Fi networks. VyprVPN's Fastest Server option easily connects you to the fastest VPN server location available. With the VPN app for Windows or Mac or iOS or Android, VyprVPN secures your connection across devices.

Successful exploitation of this discovered vulnerability could potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system.


Solutions

Users should apply the solution provided by Golden Frog.

Timeline

Fortinet reported the vulnerability to Golden Frog on April 20, 2018.

Golden Frog confirmed the vulnerability on May 2, 2018.

Golden Frog patched the vulnerability on June 21, 2018.

Acknowledgement

This vulnerability was discovered by Chris Navarrete of Fortinet's FortiGuard Labs.

IPS Subscription

Fortinet customers who subscribe to Fortinet's intrusion prevention (IPS) service should be protected against this vulnerability with the appropriate configuration parameters in place. Fortinet's IPS service is one component of FortiGuard Subscription Services, which also offer comprehensive solutions such as antivirus, Web content filtering and antispam capabilities. These services enable protection against threats on both application and network layers. FortiGuard Services are continuously updated by FortiGuard Labs, which enables Fortinet to deliver a combination of multi-layered security intelligence and true zero-day protection from new and emerging threats. These updates are delivered to all FortiGate, FortiMail and FortiClient products. Fortinet strictly follows responsible disclosure guidelines to ensure optimum protection during a threat's lifecycle.