2 matches found
CVE-2016-5237
CVE-2016-5237 affects Valve Steam client 3.42.16.13 on Windows, where weak filesystem permissions in the Steam program directory allow BUILTIN\Users to modify files, enabling local privilege escalation and potential code execution (exploits exist in Exploit-DB and related references). No official...
CVE-2013-7128
Affected software: Valve SteamOS Beta, Valve Bug Reporter package 2.10+bsos1. Vulnerability: Remember Credentials action stores credentials in a cleartext file (.valve-bugreporter.cfg). Impact: Local users can obtain sensitive information by reading the file, compromising confidentiality. Root ca...