Polycom BToE Connector before 3.0.0 uses weak permissions (Everyone: Full Control) for Program Files (x86)polycompolycom btoe connectorplcmbtoesrv.exe, which allows local users to gain privileges via a Trojan horse file.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Btoe_connector | Polycom | * | 2.3.0 (including) |