CVE-2020-10655
Description
The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.9.1 contains a vulnerability in the ITM application server's WriteWindowMouse API. The vulnerability allows an anonymous remote attacker to execute arbitrary code with local administrator privileges. The vulnerability is caused by improper deserialization.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
An unauthenticated remote attacker can achieve code execution as administrator by sending a crafted request to the WriteWindowMouse API due to improper deserialization in Proofpoint Insider Threat Management Server before 7.9.1.
Vulnerability
The vulnerability resides in the WriteWindowMouse API of the Proofpoint Insider Threat Management Server (formerly ObserveIT Server) application server. It is caused by improper deserialization of attacker-supplied data. All versions before 7.9.1 are affected [1][2].
Exploitation
An attacker can exploit this vulnerability remotely without any authentication. No user interaction or special network position is required; the attacker simply sends a specially crafted request to the vulnerable API endpoint. This triggers the improper deserialization, leading to arbitrary code execution [1][2].
Impact
Successful exploitation allows the attacker to execute arbitrary code with local administrator privileges. This results in a complete compromise of confidentiality, integrity, and availability, as the attacker gains full control over the affected server [1][2].
Mitigation
Proofpoint released version 7.9.1 on May 11, 2020, which fixes the vulnerability. Customers still running an earlier version should update immediately. No workaround is documented; upgrading to the fixed version is the only mitigation [2].
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Proofpoint/Insider Threat Management Serverdescription
- Range: <7.9.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.proofpoint.com/us/blogmitrex_refsource_MISC
- www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0003mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.