Test Kennung:	1.3.6.1.4.1.25623.1.0.809006
Kategorie:	Privilege escalation
Titel:	Flexera InstallShield Privilege Escalation Vulnerability
Zusammenfassung:	Flexera InstallShield is prone to a privilege escalation vulnerability.
Beschreibung:	Summary: Flexera InstallShield is prone to a privilege escalation vulnerability. Vulnerability Insight: The flaw is due to an untrusted search path vulnerability in Flexera InstallShield. Vulnerability Impact: Successful exploitation will allow a local attacker to gain privileges via a Trojan horse DLL in the current working directory of a setup-launcher executable file. Affected Software/OS: Flexera InstallShield through 2015 SP1. Solution: Apply the patch from the link mentioned in reference. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-2542 BugTraq ID: 84213 http://www.securityfocus.com/bid/84213 https://flexeracommunity.force.com/customer/articles/INFO/Best-Practices-to-Avoid-Windows-Setup-Launcher-Executable-Issues https://www.tenable.com/security/tns-2019-08 https://us-cert.cisa.gov/ics/advisories/icsa-20-287-03 https://www.oracle.com/security-alerts/cpuApr2021.html http://www.securitytracker.com/id/1035097
Copyright	Copyright (C) 2016 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.