CVE-2024-0259 Information

Description

Fortra’s Robot Schedule Enterprise Agent for Windows prior to version 3.04 is susceptible to privilege escalation. A low-privileged user can overwrite the service executable. When the service is restarted the replaced binary runs with local system privileges allowing a low-privileged user to gain elevated privileges.

Reference

https://www.fortra.com/security/advisory/fi-2024-005 https://hstechdocs.helpsystems.com/releasenotes/Content/_ProductPages/Robot/RobotScheduleEnterprise.htm