CVE-2018-16715

Name of the Vulnerable Software and Affected Versions Absolute Software CTES Windows Agent versions through 1.0.0.1479

Description An issue was discovered that allows low-privileged user accounts to have write access to the %ProgramData%CTES folder and sub-folders. This enables unauthorized replacement of service program executable (EXE) or dynamically loadable library (DLL) files, resulting in elevated (SYSTEM) user access. Additionally, configuration control files or data files under this folder could be modified to affect service process behavior.

Recommendations For Absolute Software CTES Windows Agent versions through 1.0.0.1479, consider restricting write access to the %ProgramData%CTES folder and sub-folders to prevent unauthorized modifications. As a temporary workaround, monitor the folder and its contents for any suspicious changes until a fix is available.