First published: Tue May 12 2015(Updated: )
Lenovo System Update (formerly ThinkVantage System Update) before 5.06.0034 uses predictable security tokens, which allows local users to gain privileges by sending a valid token with a command to the System Update service (SUService.exe) through an unspecified named pipe.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Lenovo System Update | <=5.06.0027 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.