An issue was discovered in CapMon Access Manager 5.4.1.1005. CALRunElevated.exe attempts to enforce access control by adding an unprivileged user to the local Administrators group for a very short time to execute a single command. However, the user is left in that group if the command crashes, and there is also a race condition in all cases.
References
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-03-15T15:00:00

Updated: 2024-08-05T11:08:20.403Z

Reserved: 2018-10-11T00:00:00

Link: CVE-2018-18253

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-03-15T15:29:00.443

Modified: 2024-11-21T03:55:35.943

Link: CVE-2018-18253

cve-icon Redhat

No data.