Back to directory
WRITEUP #292

ZSATrayManager Arbitrary File Deletion (CVE-2023-41969)

Auth BypassPath traversalAuthentication bypassArbitrary file deleteDLL HijackingLocal Privilege EscalationWindows
by@spaceraccoonsec(Eugene Lim)
Program
Zscaler
Published
May 27, 2024
Added to HackDex
Jun 5, 2024
Read Full Writeuphttps://medium.com/csg-govtech/catch-me-if-you-can-local-privilege-escalation-in-zscaler-client-connector-7ad997bd7058
RELATED WRITEUPS
I hacked a card printer software (CVE-2024-34329)
Privilege EscalationLocal Privilege Escalation
Breaking the Barrier: Admin Panel Takeover Worth $3500
Auth BypassAuthentication bypass
KnowBe4 RCE and LPE
RCELocal Privilege Escalation
SAML Authentication Bypass Leading to Admin Panel Access
Auth BypassSAML
Breaking Down Barriers: Exploiting Authenticated IPC Clients
Auth BypassIPC client

Built with ❤️ by Shubham Rawat