CVE-2014-5507

Name of the Vulnerable Software and Affected Versions iBackup versions 10.0.0.32 and earlier

Description The issue allows local users to gain privileges via a Trojan horse file due to weak permissions set for the ib service.exe file, which has Everyone: Full Control settings.

Recommendations For iBackup versions 10.0.0.32 and earlier, consider changing the permissions of the ib service.exe file to restrict access and prevent unauthorized modifications. As a temporary workaround, monitor the file for any suspicious changes until a more permanent solution is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.