Skip to content

Instantly share code, notes, and snippets.

@pylorak
Created January 11, 2020 14:19
Show Gist options
  • Save pylorak/7df52c9325614676e07782dbe4e81582 to your computer and use it in GitHub Desktop.
Save pylorak/7df52c9325614676e07782dbe4e81582 to your computer and use it in GitHub Desktop.
CVE-2019-19470
Unsafe usage of .NET deserialization in Named Pipe message processing allows privilege escalation to NT AUTHORITY\SYSTEM for a local attacker. Affected product is TinyWall, all version up to and including 2.1.12. Fixed in version 2.1.13.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment