Polycom · Polycom Btoe Connector · CVE-2015-8300
**Name of the Vulnerable Software and Affected Versions**
Polycom BToE Connector versions prior to 3.0.0
**Description**
The issue allows local users to gain privileges via a Trojan horse file due to weak permissions set for the "plcmbtoesrv.exe" file, specifically 'Everyone: Full Control' in the "Program Files (x86)polycompolycom btoe connector" directory.
**Recommendations**
For versions prior to 3.0.0, update to version 3.0.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the "plcmbtoesrv.exe" file to prevent unauthorized modifications.