SOUND4 Server Service 4.1.102 Local Privilege Escalation
SOUND4 Server Service version 4.1.102 suffers from an unquoted search path issue impacting the service SOUND4 Server for Windows. This could
potentially allow an authorized but non-privileged local user to execute arbitrary code with elevated privileges on the system. A successful
attempt would require the local user to be able to insert their code in
the system root path undetected by the OS or other security applications
where it could potentially be executed during application startup or
reboot. If successful, the local user's code would execute with the
elevated privileges of the application.
https://packetstormsecurity.com/files/170248/ZSL-2022-5721.txt
Thu, 15 Dec 2022 15:46:25 GMT
________________________________
--- The information is for inforamtional purposes only.
* Origin: Read us with
http://winpoint.org JID:
rs@captflint.com