An issue in SUPERAntiSyware Professional X 10.0.1262 and 10.0.1264 allows unprivileged attackers to escalate privileges via a restore of a crafted DLL file into the C:Program FilesSUPERAntiSpyware folder.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.