CVE-2004-2504

Name of the Vulnerable Software and Affected Versions Alt-N Technologies MDaemon versions 7.2 and earlier, including 6.8

Description The issue allows local users with physical access to gain privileges by exploiting how the GUI in MDaemon executes child processes, such as NOTEPAD.EXE, with SYSTEM privileges when users create new files.

Recommendations For versions 7.2 and earlier, including 6.8, consider restricting access to the GUI to minimize the risk of exploitation until a fix is available. As a temporary workaround, limit the creation of new files to authorized users only.