iDrive RemotePC before 7.6.48 on Windows allows privilege escalation. A local and low-privileged user can force RemotePC to execute an attacker-controlled executable with SYSTEM privileges.
References
Link | Resource |
---|---|
https://raw.githubusercontent.com/jacob-baines/vuln_disclosure/main/vuln_2021_01.txt | Third Party Advisory |
https://www.remotepc.com/release-info | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2021-07-15 07:15
Updated : 2021-07-26 12:07
NVD link : CVE-2021-34692
Mitre link : CVE-2021-34692
JSON object : View
CWE
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
Products Affected
microsoft
- windows
idrive
- remotepc