CVE-2023-3181

Name of the Vulnerable Software and Affected Versions Splashtop Software Updater (affected versions not specified)

Description The issue concerns the creation of a folder at C:WindowsTempnsu.tmp by the C:Program Files (x86)SplashtopSplashtop Software Updateruninst.exe process, which copies itself to this folder as Au .exe. This Au .exe file is launched as SYSTEM when the system reboots or when a standard user runs an MSI repair using Splashtop Streamer’s Windows Installer. Since the C:WindowsTempnsu.tmp folder inherits permissions from C:WindowsTemp and Au .exe is susceptible to DLL hijacking, standard users can write a malicious DLL to it and elevate their privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.