Schweitzer Engineering Laboratories (SEL) AcSELerator QuickSet before 5.12.0.1 uses weak permissions for its Program Files directory, which allows local users to replace executable files, and consequently gain privileges, via standard filesystem operations.
References
Link | Resource |
---|---|
http://ics-cert.us-cert.gov/pdf/ICSA-13-079-01.pdf | US Government Resource |
Configurations
History
No history.
Information
Published : 2013-03-21 14:55
Updated : 2024-02-28 12:00
NVD link : CVE-2013-0665
Mitre link : CVE-2013-0665
CVE.ORG link : CVE-2013-0665
JSON object : View
Products Affected
selinc
- acselerator_quickset
CWE
CWE-264
Permissions, Privileges, and Access Controls