Unquoted Windows search path vulnerability in Schneider Electric Floating License Manager 1.0.0 through 1.4.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character.
References
Link | Resource |
---|---|
http://ics-cert.us-cert.gov/advisories/ICSA-14-058-01 | US Government Resource |
http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-015-01 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-02-27 22:18
Updated : 2014-02-28 09:16
NVD link : CVE-2014-0759
Mitre link : CVE-2014-0759
JSON object : View
CWE
Products Affected
schneider-electric
- floating_license_manager