PT-2015-7122 · Epson · Epson Network Utility

Will Hunt

Published

2015-10-28

Updated

2015-10-29

CVE-2015-6034

CVSS v2.0

6.9

Medium

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions EPSON Network Utility version 4.10

Description The issue concerns weak permissions set for the eEBSVC.exe file, where everyone has full control. This weakness can be exploited by local users to gain privileges through the use of a Trojan horse file.

Recommendations For EPSON Network Utility version 4.10, consider restricting access to the eEBSVC.exe file to prevent unauthorized modifications and mitigate the risk of privilege escalation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2015-6034

Affected Products

Epson Network Utility

PT-2015-7122 · Epson · Epson Network Utility

CVE-2015-6034

Weakness Enumeration

Related Identifiers

Affected Products

References · 4