vendor:
InstantHMI
by:
sh4d0wman
7.5
CVSS
HIGH
Elevation of Privilege
276
CWE
Product Name: InstantHMI
Affected Version From: 6.1
Affected Version To: 6.1
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested: Windows 7 x86
2016
InstantHMI – EoP: User to ADMIN
During a standard installation of InstantHMI, the installer automatically creates a folder named "IHMI-6" in the root drive with incorrect default permissions. AUTHENTICATED USERS are given WRITE permission, allowing them to replace binaries or plant malicious DLLs to obtain elevated, administrative level privileges.
Mitigation:
Install the software under "c:\program files" or "C:\Program Files (x86)" and set appropriate permissions on the application folder.