Espiral MS Group Panloader Privilege Escalation Vulnerability

A privilege escalation vulnerability exists in the Panloader component, version 3.24.0.0, by Espiral MS Group. This vulnerability allows any user to replace the panLoad.exe file, which is executed by the SYSTEM user through a scheduled task. Exploiting this vulnerability could grant an attacker administrative privileges, enabling them to access sensitive information, execute code remotely, or cause a denial-of-service condition.

Impact

Exploitation of this vulnerability could lead to unauthorized administrative access, allowing an attacker to manipulate system resources, access confidential data, execute arbitrary code remotely, or disrupt services, causing a denial-of-service condition.

Remediation

To mitigate this vulnerability, it is recommended to change the permissions of the Panloader installation directory. Remove all permissions for the 'Everyone' and 'Authenticated Users' groups, then reassign only read, execute, and content listing permissions to the 'Authenticated Users' group. For further information or technical support, contact the Proactivanet support portal.