CVE-2014-0759 - Unquoted Windows search path vulnerability in Schneider Electric Floating License Manager 1.0.0 thro

CVE-2014-0759

Summary

Unquoted Windows search path vulnerability in Schneider Electric Floating License Manager 1.0.0 through 1.4.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character. Per: http://cwe.mitre.org/data/definitions/428.html "CWE-428: Unquoted Search Path or Element" Per: http://ics-cert.us-cert.gov/advisories/ICSA-14-058-01 "This license manager is used in the following Schneider Electric products: Power Monitoring Expert, Struxureware process Expert (PES), Struxureware process Expert libraries, Vijeo Citect (SCADA), and Vijeo Citect Historian."

References

Vulnerable Configurations

cpe:2.3:a:schneider-electric:floating_license_manager:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:floating_license_manager:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:floating_license_manager:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:floating_license_manager:1.4.0:*:*:*:*:*:*:*

CVSS

Base:	6.9 (as of 28-02-2014 - 17:16)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:M/Au:N/C:C/I:C/A:C

refmap via4

confirm	http://download.schneider-electric.com/files?p_Doc_Ref=SEVD%202014-015-01
misc	http://ics-cert.us-cert.gov/advisories/ICSA-14-058-01

Last major update

28-02-2014 - 17:16

Published

28-02-2014 - 06:18

Last modified

28-02-2014 - 17:16