Sophos SafeGuard Priivlege Escalation

2018.07.08

Credit: Kyriakos Economou

Risk: Medium

Local: Yes

Remote: No

CVE: N/A

CWE: N/A

We have recently disclosed a list of vulnerabilities to Sophos that 
allow local attackers to elevate their privileges and execute code in 
the security context of the SYSTEM user account.

Affected Products:
SafeGuard Enterprise 8.00.4 and earlier (Fix: install 8.00.5)
SafeGuard Easy 7.00.2.35 and earlier (Fix: install 7.00.3)
SafeGuard LAN Crypt 3.95.1.13 and earlier (Fix: install 3.95.2)

For more information regarding these issues please visit: 
https://labs.nettitude.com/blog/cve-2018-6851-to-cve-2018-6857-sophos-privilege-escalation-vulnerabilities/

Cheers,
kyREcon

See this note in RAW Version

Vote for this issue:

50%

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

Sophos SafeGuard Priivlege Escalation

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Sophos SafeGuard Priivlege Escalation

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.