Weak Permissions in MSI Installer Can Lead to Escalated Privileges
CVE-2024-42052

7.8HIGH

Key Information:

Vendor: Splashtop
Status: Streamer
Vendor: CVE Published:; 28 July 2024

What is CVE-2024-42052?

A vulnerability exists in the MSI installer for Splashtop Streamer for Windows prior to version 3.5.8.0 due to the use of a temporary folder with insufficient permissions during the installation process. This configuration flaw allows a local user to exploit the weakness by placing a malicious 'wevtutil.exe' file into the temporary folder, enabling them to escalate their privileges to SYSTEM. As a result, this exposure could lead to unauthorized access and control over the affected systems, posing a significant risk to user data and system integrity.

References

https://github.com/SpacePlant/Vulns/blob/main/Advisories/...

https://support-splashtopbusiness.splashtop.com/hc/en-us/...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 28, 2024
Vulnerability Reserved
Jul 28, 2024