Unquoted Windows search path vulnerability in the guest service in Unisys s-Par prior to 4.4.20 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
unisys secure partitioning 4.4.19 |
||
unisys secure partitioning 4.3.403 |