Bluetooth Stack for Windows by Toshiba and TOSHIBA Service Station contain a trusted service path privilege escalation vulnerability.
CWE-428: Unquoted Search Path or Element
Bluetooth Stack for Windows by Toshiba versions 9.10.27(T) and earlier, as well as TOSHIBA Service Station versions 2.2.13 and earlier, contain a trusted service path privilege escalation vulnerability.
A local authenticated attacker may be able to escalate privileges to SYSTEM.
Apply an Update
Thanks to Giovanni Delvecchio for reporting this vulnerability.
This document was written by Todd Lewellen.
|Date First Published:||2015-02-27|
|Date Last Updated:||2015-03-05 23:49 UTC|