Name of the Vulnerable Software and Affected Versions Burn versions (affected versions not specified)

Description The issue concerns the use of an unprotected directory, C:WindowsTemp, by Burn to copy and run binaries. This directory is accessible to low-privilege users, who can hijack binaries before they are loaded, resulting in elevation of privileges. The BUILTINUsers group has special permissions to this folder, allowing them to create files and write to the directory. Although they do not have explicit read permissions, they can monitor changes to the directory using the ReadDirectoryChangesW API. This vulnerability can be exploited by a low-privileged user to elevate their privileges to the SYSTEM user level.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.