Description
Akeo Consulting Rufus 3.0 and earlier is affected by: Insecure Permissions. The impact is: arbitrary code execution with escalation of privilege. The component is: Executable installer, portable executable (ALL executables available). The attack vector is: CWE-29, CWE-377, CWE-379.
Affected products
- Akeo Consulting / Rufus3.0 and earlier – 3.0 and earlier
References
- MAILING_LISThttp://seclists.org/oss-sec/2018/q2/146