CVE-2015-7985

Valve Steam <2.10.91.91 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-7985. PoCs published by MrDoug.

AI-analyzed exploit summary The writeup describes a local privilege escalation vulnerability in multiple Steam client executables due to overly permissive file permissions (BUILTIN\Users:F). It lists affected files and notes that Steam's auto-start behavior exacerbates the risk.

Description

Valve Steam 2.10.91.91 uses weak permissions (Users: read and write) for the Install folder, which allows local users to gain privileges via a Trojan horse steam.exe file.

Exploits (1)

exploitdb WRITEUP VERIFIED

by MrDoug · textlocalwindows

https://www.exploit-db.com/exploits/9386

View Code ZIP pw:eip

The writeup describes a local privilege escalation vulnerability in multiple Steam client executables due to overly permissive file permissions (BUILTIN\Users:F). It lists affected files and notes that Steam's auto-start behavior exacerbates the risk.

Classification

Writeup 90%

Attack Type

Lpe

Complexity

Trivial

Reliability

Reliable

Target: Steam client (built Jun 30 2009)

No auth needed

Prerequisites: Local access to the system · Steam client installed with default permissions

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Broken Link, Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/536961/100/0/threaded

Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/134513/Steam-2.10.91.91-Weak-File-Permissions-Privilege-Escalation.html

Scores

EPSS 0.0094

EPSS Percentile 56.4%

Details

CWE

CWE-276

Status published

Products (1)

valvesoftware/steam_client 2.10.91.91

Published Nov 24, 2015

Tracked Since Feb 18, 2026