Clavoillotte

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to an elevation of privilege vulnerability in the "Public Account Pictures" folder, which improperly handles junctions. To exploit this, an attacker must first gain execution on the victim system. This allows the attacker to potentially elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intel(R) RWC3 for Windows versions prior to 7.010.009.000 **Description** The issue is related to improper permissions in the installer, which may allow an authenticated user to potentially enable escalation of privilege via local access. It is also described as a vulnerability in the default permission settings of the Intel Raid Web Console 3, which can be exploited to elevate privileges. **Recommendations** For versions prior to 7.010.009.000, update to version 7.010.009.000 or later to resolve the issue. As a temporary workaround, consider restricting local access to the installer until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Windows Error Reporting (WER) (affected versions not specified) **Description** The issue is related to an information disclosure problem in the Windows Error Reporting (WER) service, which lacks protection for certain data. This could allow an attacker to gain unauthorized access to protected information using a specially crafted application. The vulnerability is also described as an elevation-of-privilege issue that affects the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Error Reporting Manager (affected versions not specified) **Description** The issue is related to insecure privilege management in the Windows Error Reporting service, allowing an attacker to elevate their privileges. This can affect the system, potentially leading to unauthorized access or control. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.