6 matches found
EUVD-2015-8188
Malware in sbrugna...
Polycom BToE Connector Elevation of Privilege Vulnerability
Polycom BToE Connector is a BToE connector developed by Polycom. A security vulnerability exists in Polycom BToE Connector versions prior to 3.0.0, which originates from a program that assigns weak privileges to the x86\polycom\polycom btoe connector\plcmbtoesrv.exe program file. A local attacker...
Design/Logic Flaw
Polycom BToE Connector before 3.0.0 uses weak permissions Everyone: Full Control for "Program Files x86\polycom\polycom btoe connector\plcmbtoesrv.exe," which allows local users to gain privileges via a Trojan horse file...
CVE-2015-8300
Polycom BToE Connector (pre-3.0.0) exposes weak permissions (Everyone: Full Control) on the file plcmbtoesrv.exe, enabling local privilege escalation via a Trojan horse/file replacement. Multiple sources corroborate that versions prior to 3.0.0 are affected; fixed in version 3.0.0 released March ...
CVE-2015-8300
Polycom BToE Connector before 3.0.0 uses weak permissions Everyone: Full Control for "Program Files x86\polycom\polycom btoe connector\plcmbtoesrv.exe," which allows local users to gain privileges via a Trojan horse file...
Polycom BTOE Connector 2.3.0 Local Privilege Escalation
Title: Polycom BToE Connector up to version 2.3.0 allows unprivileged windows users to execute arbitrary code with SYSTEM privileges. Type of vulnerability: Privilege Escalation Exploitation vector: local Attack outcome: Code execution with SYSTEM privileges. Impact: CVSS Base Score 6,2 CVSS v2...