Ridiculous vulnerability disclosure process with CrowdStrike Falcon Sensor
Ridiculous vulnerability disclosure process with CrowdStrike Falcon Sensor
Today, we publish a new advisory for a vulnerability in the CrowdStrike Falcon Sensor, that was found by our team-mate Pascal Zenker as part of a recent red-teaming engagement.
The vulnerability is a case of insufficient control flow management, that allows an attacker with administrative privileges to bypass the Falcon Agent Uninstall Protection feature of CrowdStrike. As the exploit needs high privileges, the overall ri...
Read more at modzero.com