RSS   Vulnerabilities for 'Paperstream ip (twain)'   RSS



In PaperStream IP (TWAIN) (Service Update 7), the FJTWSVIC service running with SYSTEM privilege processes unauthenticated messages received over the FjtwMkic_Fjicube_32 named pipe. One of these message processing functions attempts to dynamically load the UninOldIS.dll library and executes an exported function named ChangeUninstallString. The default install does not contain this library and therefore if any DLL with that name exists in any directory listed in the PATH variable, it can be used to escalate to SYSTEM level privilege.


 >>> Vendor: Fujitsu 48 Products
Uxp v
Siemens networker
Netshelter fw
Netshelter fw-l
Netshelter fw-m
Netshelter fw-p
Myweb portal office
Interstage application server
Interstage apworks
Systemwalker desktop encryption
Primergy bx300
Interstage studio
Interstage application server enterprise
Interstage application server standard j
Interstage apworks enterprise
Interstage apworks standard j
Interstage studio enterprise
Interstage studio standard j
Interstage application server plus
Interstage apworks modelers j
Interstage business application server
Interstage smart repository
Interstage application server plus developer
Interstage business application server enterprise
Web based admin view
Systemcastwizard lite
Enhanced support facility
Serverview operations manager
Arrows me f-11d
Arrows tab lte f-01d
Arrows x lte f-05d
Regza phone t-01d
Arrows kiss f-03d
Displayview click
Displayview click suite
Gk900 firmware
Lx901 firmware
Paperstream ip (twain)
Arrows nx f005-f firmware
Serverview remote management
Plugfree network

Copyright 2022,


Back to Top