KLA10821
Arbitrary code execution vulnerability in Lenovo Accelerator Application
Обновлено: 17/06/2019
Дата обнаружения
03/06/2016
Уровень угрозы
Critical
Описание

Improper implementation of update mechanism was found in Lenovo Accelerator Application. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via spoofing an update response by man-in-the-middle attack.


Technical details

To workaround this vulnerability you have to uninstall Lenovo Accelerator Application. For further instructions you can read original LEN-6718 Lenovo advisory listed below.

Пораженные продукты

Lenovo Accelerator Application all versions 

Решение

Uninstall Lenovo Accelerator Application

Первичный источник обнаружения
Original advisory
Оказываемое влияние
?
ACE 
[?]
CVE-IDS
CVE-2016-39449.3Critical