Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Sophos SafeGuard Privilege Escalation Vulnerability (Windows)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
Sophos SafeGuard Client Products are prone to privilege escalation vulnerabilities.
Insight
Insight
The vulnerabilities are present within all configurations of SafeGuard Enterprise (SGN), SafeGuard Easy (SGE) and SafeGuard LAN Crypt (SGLC) clients running on Windows. Exploitation of those vulnerabilities requires running malicious code on the target machine and can result in privilege escalation. This vulnerability is not remotely exploitable (i.e. over the network).
Affected Software
Affected Software
SafeGuard Enterprise Client 8.00.4 and earlier, SafeGuard Easy Client 7.00.2.35 and earlier, SafeGuard LAN Crypt Client 3.95.1.13 and earlier.
Detection Method
Detection Method
The script checks if a vulnerable version is present on the target host.
Solution
Solution
Upgrade to SafeGuard Enterprise Client 8.00.5, SafeGuard Easy Client 7.00.3 or SafeGuard LAN Crypt Client 3.95.2.