ID de Prueba:	1.3.6.1.4.1.25623.1.0.809006
Categoría:	Privilege escalation
Título:	Flexera InstallShield Privilege Escalation Vulnerability
Resumen:	Flexera InstallShield is prone to a privilege escalation vulnerability.
Descripción:	Summary: Flexera InstallShield is prone to a privilege escalation vulnerability. Vulnerability Insight: The flaw is due to an untrusted search path vulnerability in Flexera InstallShield. Vulnerability Impact: Successful exploitation will allow a local attacker to gain privileges via a Trojan horse DLL in the current working directory of a setup-launcher executable file. Affected Software/OS: Flexera InstallShield through 2015 SP1. Solution: Apply the patch from the link mentioned in reference. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-2542 BugTraq ID: 84213 http://www.securityfocus.com/bid/84213 https://flexeracommunity.force.com/customer/articles/INFO/Best-Practices-to-Avoid-Windows-Setup-Launcher-Executable-Issues https://www.tenable.com/security/tns-2019-08 https://us-cert.cisa.gov/ics/advisories/icsa-20-287-03 https://www.oracle.com/security-alerts/cpuApr2021.html http://www.securitytracker.com/id/1035097
Copyright	Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.