SafeNet Authentication Service End User Software Tools for Windows uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:37
Type | Values Removed | Values Added |
---|---|---|
References | () https://labs.nettitude.com/blog/cve-2015-7596-through-cve-2015-7598-cve-2015-7961-through-cve-2015-7967-safenet-authentication-service-agent-vulnerabilities/ - Third Party Advisory | |
References | () https://labs.nettitude.com/wp-content/uploads/2016/03/160125-1-Gemalto-IDSS-Security-Bulletin-SAS-Agents-Privilege-Escalation.pdf - Patch, Third Party Advisory | |
References | () https://safenet.gemalto.com/technical-support/security-updates/ - Vendor Advisory |
Information
Published : 2018-03-02 22:29
Updated : 2024-11-21 02:37
NVD link : CVE-2015-7596
Mitre link : CVE-2015-7596
CVE.ORG link : CVE-2015-7596
JSON object : View
Products Affected
gemalto
- safenet_authentication_service_end_user_software_tools_for_windows
CWE
CWE-264
Permissions, Privileges, and Access Controls