CVE-2018-18519

Name of the Vulnerable Software and Affected Versions BestXsoftware Best Free Keylogger versions prior to 6.0.0

Description The issue allows local users to gain privileges via a Trojan horse "%PROGRAMFILES%BFK 5.2.9syscrb.exe" file because of insecure permissions for the BUILTINUsers group.

Recommendations For versions prior to 6.0.0, consider updating to version 6.0.0 or later to resolve the issue. As a temporary workaround, restrict access to the "%PROGRAMFILES%BFK 5.2.9syscrb.exe" file to minimize the risk of exploitation.