Windows: Fix possible local privilege escalation vulnerability during execution of VeraCrypt Expander (CVE-2019-19501)

author: Mounir IDRASSI <mounir.idrassi@idrix.fr> 2019-12-03 22:23:09 +0100
committer: Mounir IDRASSI <mounir.idrassi@idrix.fr> 2019-12-03 22:25:37 +0100
commit: ade8e3f8cbfd1143fcd2e4bfbd6c387b8b64f732 (patch)
tree: 264993f0118b8906d256e6341952bc39846bb176 /src/ExpandVolume
parent: c6ff31be1c2597c6545e3b1116b650f25e90cd8a (diff)
download: VeraCrypt-ade8e3f8cbfd1143fcd2e4bfbd6c387b8b64f732.tar.gz
VeraCrypt-ade8e3f8cbfd1143fcd2e4bfbd6c387b8b64f732.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/src/ExpandVolume/WinMain.cpp b/src/ExpandVolume/WinMain.cpp
index 2710cc4e..ffeabe01 100644
--- a/src/ExpandVolume/WinMain.cpp
+++ b/src/ExpandVolume/WinMain.cpp
@@ -957,7 +957,7 @@ BOOL CALLBACK MainDialogProc (HWND hwndDlg, UINT uMsg, WPARAM wParam, LPARAM lPa
 		if (lw == IDM_HOMEPAGE )
 		{
 			ArrowWaitCursor ();
-			ShellExecute (NULL, L"open", L"https://www.veracrypt.fr", NULL, NULL, SW_SHOWNORMAL);
+			SafeOpenURL (L"https://www.veracrypt.fr");
 			Sleep (200);
 			NormalCursor ();
author	Mounir IDRASSI <mounir.idrassi@idrix.fr>	2019-12-03 22:23:09 +0100
committer	Mounir IDRASSI <mounir.idrassi@idrix.fr>	2019-12-03 22:25:37 +0100
commit	ade8e3f8cbfd1143fcd2e4bfbd6c387b8b64f732 (patch)
tree	264993f0118b8906d256e6341952bc39846bb176 /src/ExpandVolume
parent	c6ff31be1c2597c6545e3b1116b650f25e90cd8a (diff)
download	VeraCrypt-ade8e3f8cbfd1143fcd2e4bfbd6c387b8b64f732.tar.gz VeraCrypt-ade8e3f8cbfd1143fcd2e4bfbd6c387b8b64f732.zip