CVE-2014-8419 - CodeMeter Weak Service Permissions

CodeMeter Weak Service Permissions Vendor Website : http://www.codemeter.com INDEX --------------------------------------- 1. Background 2. Description 3. Affected Products 4. Vulnerability 5. Solution 6. Credit 7. Disclosure Timeline 8. CVE 1. BACKGROUND ---------------------------------------...

Design/Logic Flaw

Wibu-Systems CodeMeter Runtime before 5.20 uses weak permissions read and write access for all users for codemeter.exe, which allows local users to gain privileges via a Trojan horse file...