Security Updates on Vulnerabilities

Elevation of system privilege

This document will explain you about the vulnerability reported by Abdullah AlJaber, which allows unauthorised user, whose computer is installed with the Agent to access command prompt using system account.

Vulnerabilities Fix Released on
CVE-2018-13411, CVE-2018-13412 23-Aug-2018

What was the Problem?

Unauthorised users, whose computer is installed with Endpoint Central MSP Agent were able to access command prompt using system account.

How do I fix it?

This has been identified and fixed on 23-Aug-2018. To apply this fix, follow the below steps:

  1. Log in to your Endpoint Central console, click on your current build number on the top right corner.
  2. You can find the latest build applicable to you. Download the PPM and update.
  3.  

    Keywords: Security Updates, Vulnerabilities and Fixes.

Remote Desktop & Mobile Device Management Software for MSPs trusted by