漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
IDrive Cloud Backup Client for Windows contains a privilege escalation vulnerability
Vulnerability Description
IDrive’s id_service.exe process runs with elevated privileges and regularly reads from several files under the C:\ProgramData\IDrive\ directory. The UTF16-LE encoded contents of these files are used as arguments for starting a process, but they can be edited by any standard user logged into the system. An attacker can overwrite or edit the files to specify a path to an arbitrary executable, which will then be executed by the id_service.exe process with SYSTEM privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IDrive 安全漏洞
Vulnerability Description
IDrive是美国IDrive公司的一套云备份和云存储服务解决方案。 IDrive存在安全漏洞,该漏洞源于id_service.exe进程使用特权读取文件,可能导致攻击者指定任意可执行文件路径并执行。
CVSS Information
N/A
Vulnerability Type
N/A