CVE-2014-5453 Information

Description

Ubisoft Uplay PC before 4.6.1.3217 use weak permissions (Everyone: Full Control) for the program installation directory (PROGRAMFILES\Ubisoft Game Launcher) which allows local users to gain privileges via a Trojan horse file.

Reference

http://osvdb.org/show/osvdb/108726 http://www.exploit-db.com/exploits/33961 http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5191.php