PT-2020-7241 · Safend · Safend Data Protector Agent

Joseph Sheridan

Published

2020-01-13

Updated

2020-01-22

CVE-2012-4761

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Safend Data Protector Agent version 3.4.5586.9772

Description A Privilege Escalation issue exists in the unquoted Service Binary in SDPAgent or SDBAgent, which could allow a local malicious user to obtain privileges.

Recommendations For Safend Data Protector Agent version 3.4.5586.9772, update to a version that quotes the Service Binary in SDPAgent or SDBAgent to prevent privilege escalation.

Exploit

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2012-4761

Affected Products

Safend Data Protector Agent

PT-2020-7241 · Safend · Safend Data Protector Agent

CVE-2012-4761

Weakness Enumeration

Related Identifiers

Affected Products

References · 4