Necessarily indicate when this vulnerability wasĭiscovered, shared with the affected vendor, publicly The CVE ID was allocated or reserved, and does not FULLDISC:20231212 SEC Consult SA-20231211-0 :: Local Privilege Escalation via MSI installer in PDF24 Creatorĭisclaimer: The record creation date may reflect when. Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. This allows an unprivileged local attacker to use a chain of actions (e.g., an oplock on faxPrnInst.log) to open a SYSTEM cmd.exe. The configuration of the msi installer file was found to produce a visible cmd.exe window when using the repair function of msiexec.exe. It is highly likely that this software program is malicious or has security issues or other reasons.An issue was discovered in PDF24 Creator 11.14.0. This software is no longer available for download. These could be false positives, and our users are advised to be careful when installing and using this software. These may include a toolbar, changing your homepage, default search engine, or installing other party programs. This program is advertising supported and may offer to install third-party programs that are not required. And there is no third-party softwarebundled. We scanned files and URLs associated with this software program in more than 60 of the world's leading antivirus services no possible threats were found. It is highly likely that this software program is clean. Based on this checking, we set the following security levels for any downloadable files. To avoid any potential harm to your device and ensure the security of your data and privacy, our team checks every time a new installation file is uploaded to our servers or linked to a remote server and periodically reviews the file to confirm or update its status.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |