Genius VideoCAM NB Local Privilege Escalation Vulnerability
BID:17284
Info
Genius VideoCAM NB Local Privilege Escalation Vulnerability
| Bugtraq ID: | 17284 |
| Class: | Design Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 28 2006 12:00AM |
| Updated: | Mar 29 2006 12:13AM |
| Credit: | Discovery is credited to beford <[email protected]>. |
| Vulnerable: |
KYE Genius VideoCAM NB 0 |
| Not Vulnerable: | |
Discussion
Genius VideoCAM NB Local Privilege Escalation Vulnerability
Genius VideoCAM NB is susceptible to a local privilege-escalation vulnerability. This issue is due to the application's failure to properly lower the privileges of the running process when required.
The affected driver executes with SYSTEM privileges and fails to drop these elevated privileges when displaying a file-save dialog.
This vulnerability allows local attackers to access and execute arbitrary files with SYSTEM privileges, facilitating the compromise of the local computer.
Genius VideoCAM NB is susceptible to a local privilege-escalation vulnerability. This issue is due to the application's failure to properly lower the privileges of the running process when required.
The affected driver executes with SYSTEM privileges and fails to drop these elevated privileges when displaying a file-save dialog.
This vulnerability allows local attackers to access and execute arbitrary files with SYSTEM privileges, facilitating the compromise of the local computer.
Exploit / POC
Genius VideoCAM NB Local Privilege Escalation Vulnerability
Attackers can exploit this issue through the interface of the affected products.
Attackers can exploit this issue through the interface of the affected products.
Solution / Fix
Genius VideoCAM NB Local Privilege Escalation Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected]
References
Genius VideoCAM NB Local Privilege Escalation Vulnerability
References:
References:
- Genius Home Page (KYE)
- Genius VideoCAM NB Local Privilege Escalation (beford