Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Windows privilege change issue was discovered in Splashtop Software Updater before 1.5.6.16. Insecure permissions on the configuration file and named pipe allow for local privilege escalation to NT AUTHORITY/SYSTEM, by forcing a permission change to any Splashtop files and directories, with resultant DLL hijacking. This product is bundled with Splashtop Streamer (before 3.3.8.0) and Splashtop Business (before 3.3.8.0).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Splashtop Software Updater 代码问题漏洞
Vulnerability Description
Splashtop Software Updater是美国Splashtop公司的一款用于Splashtop产品的软件更新应用程序。 Splashtop Streamer 3.3.8.0之前版本和Splashtop Business 3.3.8.0之前版本中的Splashtop Software Updater 1.5.6.16之前版本存在安全漏洞。攻击者可利用该漏洞导致DLL劫持,进而将权限提升为NT AUTHORITY/SYSTEM。
CVSS Information
N/A
Vulnerability Type
N/A