CVE-2013-3496 Information

Description

Infotecs ViPNet Client 3.2.10 (15632) and earlier ViPNet Coordinator 3.2.10 (15632) and earlier ViPNet Personal Firewall 3.1 and earlier and ViPNet SafeDisk 4.1 (0.5643) and earlier use weak permissions (Everyone: Full Control) for a folder under PROGRAMFILES\Infotecs which allows local users to gain privileges via a Trojan horse (1) executable file or (2) DLL file.

Reference

http://archives.neohapsis.com/archives/bugtraq/2013-05/0072.html