Spy Sweeper Enterprise allows elevated privileges
| spy-sweeper-gain-privileges (18628) |  High Risk |
Description:
Spy Sweeper Enterprise could allow a local attacker to gain elevated privileges on the system, caused by a vulnerability in the 'SpySweeperTra.exe' process when initiating the help functionality. A local attacker could exploit this vulnerability to execute arbitrary commands on the system and gain elevated privileges.
Platforms Affected:
- Microsoft, Windows 2003 Server
- Webroot, Spy Sweeper Enterprise 1.5.1 Build 3698
Remedy:
Upgrade to the latest version of Spy Sweeper Enterprise (2.0 or later), available from the Spy Sweeper Web page. See References.
Consequences:
Gain Privileges
References:
- Spy Sweeper Enterprise Web page, Spy Sweeper Enterprise at http://webroot.com/products/spysweeper/enterprise/.
- BID-12065: Webroot Software Spy Sweeper Enterprise Local Privilege Escalation Vulnerability
- CVE-2004-2676: The Spy Sweeper Enterprise Client (SpySweeperTray.exe) in WebRoot Spy Sweeper before 2.0 does not drop privileges when using the help functionality, which allows local users to gain privileges.
- OSVDB ID: 12534: Spy Sweeper Enterprise SpySweeperTray.exe Help Function Local Privilege Escalation
- SA13187: Spy Sweeper Enterprise Privilege Escalation Vulnerability
- SECTRACK ID: 1012652: Spy Sweeper Enterprise Windows Tray Icon Lets Local Users Gain Elevated Privileges
Reported:
Dec 21, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net