Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Valve Steam Client 2.10.91.91. The installer allows local users to gain NT AUTHORITY\SYSTEM privileges because some parts of %PROGRAMFILES(X86)%\Steam and/or %COMMONPROGRAMFILES(X86)%\Steam have weak permissions during a critical time window. An attacker can make this time window arbitrarily long by using opportunistic locks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Valve Steam 安全漏洞
Vulnerability Description
Valve Steam是美国Valve公司的一套游戏发行管理平台。该平台提供数字版权管理、多人游戏、流媒体和社交网络服务等功能。 Valve Steam Client 2.10.91.91版本中存在安全漏洞。本地攻击者可利用该漏洞以较高的权限执行恶意的二进制文件。
CVSS Information
N/A
Vulnerability Type
N/A