Description
The Windows client in SAP Afaria 7.0.6398.0 uses weak permissions (Everyone: read and Everyone: write) for the install folder, which allows local users to gain privileges via a Trojan horse XeService.exe file.
References (4)
Core 4
Core References
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2015/Jul/60
Exploit, Third Party Advisory x_refsource_misc
http://packetstormsecurity.com/files/132681/SAP-Afaria-XeService.exe-7.0.6398.0-Weak-File-Permissions.html
Various Sources x_refsource_misc
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2015-3449/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/75725
Scores
EPSS
0.0004
EPSS Percentile
10.7%
Details
CWE
CWE-254
Status
published
Products (1)
sap/afaria
7.0.6398.0
Published
Jul 16, 2015
Tracked Since
Feb 18, 2026