← back
CVE-2014-9141

CVE-2014-9141

EPSS 1.2%
The installer in Thomson Reuters Fixed Assets CS 13.1.4 and earlier uses weak permissions for connectbgdl.exe, which allows local users to execute arbitrary code by modifying this program.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/35423unverifiedexploitdbwww.exploit-db.com/exploits/35423unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.exploit-db.com/exploits/35423http://www.information-paradox.net/2014/12/cve-2014-9141-thomson-reuters-fixed.html