Cisco Talos has discovered two similar vulnerabilities in the ProtonVPN and NordVPN VPN clients. The vulnerabilities allow attackers to execute code as an administrator on Microsoft Windows operating systems from a standard user. Despite the fix, it is still possible to execute software on the system. The details section later on in this post will explain the first patch, why it was not successful, and how the editors finally fixed the problem. Both clients have the same design: The user interface is executed with the permission of the logged-in user. The goal of the binary is to execute the OpenVPN client binary with the user configuration file.”]