Fortinet FortiClient Host Security fortimon.sys Crafted Request Local Privilege Escalation
High Nessus Plugin ID 31347
SynopsisThe remote Windows host contains a device driver that is affected by a local privilege escalation vulnerability.
DescriptionFortiClient is installed on the remote host, providing it with a range of security-related functionality.
The version of the fortimon.sys device driver installed on the remote host as part of FortiClient allows a local user to escalate his privileges by issuing a special request to the driver's device.
SolutionUpgrade to Fortinet FortiClient 3.0 MR5 Patch 4 (build 474) / 3.0 MR6 (build 534) or later.