Name of the Vulnerable Software and Affected Versions Dropbox client for Windows (affected versions not specified)

Description The issue is related to insufficient access control in the Dropbox update service, dropboxupdate. It can be exploited by creating a specially crafted hard link, potentially allowing an attacker to elevate their privileges to the root level.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.