iBackup 10.0.0.32 and earlier uses weak permissions (Everyone: Full Control) for ib_service.exe, which allows local users to gain privileges via a Trojan horse file.
References
Configurations
History
No history.
Information
Published : 2014-11-03 16:55
Updated : 2024-02-28 12:20
NVD link : CVE-2014-5507
Mitre link : CVE-2014-5507
CVE.ORG link : CVE-2014-5507
JSON object : View
Products Affected
pro_softnet_corporation
- ibackup
CWE
CWE-264
Permissions, Privileges, and Access Controls