CVE-2018-13013

Name of the Vulnerable Software and Affected Versions SoftControl/SafenSoft SysWatch versions prior to 4.4.9 SoftControl/SafenSoft TPSecure versions prior to 4.4.9 SoftControl/SafenSoft Enterprise Suite versions prior to 4.4.9

Description The issue arises from an improper check of unusual conditions when launching msiexec.exe in the SysWatch service, allowing a local attacker to bypass a code-signing protection mechanism. This enables the attacker to install or execute an unauthorized program by modifying the system configuration and installing a forged MSI file, contrary to the intended behavior of only allowing installations of MSI files signed by a limited list of certificates.

Recommendations For SoftControl/SafenSoft SysWatch versions prior to 4.4.9, update to version 4.4.9 or later to resolve the issue. For SoftControl/SafenSoft TPSecure versions prior to 4.4.9, update to version 4.4.9 or later to resolve the issue. For SoftControl/SafenSoft Enterprise Suite versions prior to 4.4.9, update to version 4.4.9 or later to resolve the issue.