An issue exists in Inosoft VisiWin 7 through 2022-2.1 (Runtime RT7.3 RC3 20221209.5). The "%PROGRAMFILES(X86)%\INOSOFT GmbH" folder has weak permissions for Everyone, allowing an malicious user to insert a Trojan horse file that runs as SYSTEM. 2024-1 is a fixed version.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
inosoft visiwin 7 |