Unquoted Windows search path vulnerability in the guest service in Unisys s-Par before 4.4.20 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe.
CPE | Name | Operator | Version |
---|---|---|---|
secure_partitioning | eq | 4.4.19 | |
secure_partitioning | eq | 4.3.403 |