Privilege Escalation Risk in RW-5100 Driver Installer for Windows
CVE-2017-2191

7.8HIGH

Key Information:

Vendor

Sharp Corporation

Status
Rw-5100 Driver Installer For Windows 7
Rw-5100 Driver Installer For Windows 8.1
Vendor
CVE Published:
9 June 2017

What is CVE-2017-2191?

The RW-5100 driver installer for Windows 7 and Windows 8.1 contains a vulnerability that permits an attacker to exploit an untrusted search path. By placing a malicious DLL in a directory not adequately controlled, an attacker can gain elevated privileges when the installer is executed. This exploitation could enable unauthorized actions on the host system, present a significant security risk to system integrity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

RW-5100 driver installer for Windows 7 version 1.0.0.9

RW-5100 driver installer for Windows 8.1 version 1.0.1.0

References

http://www.securityfocus.com/bid/99290
vdb-entryx_refsource_BID
http://jvn.jp/en/jp/JVN51274854/index.html
third-party-advisoryx_refsource_JVN

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.