![]() ![]() You’ve two options: update Snagit to the following versions or disable Techsmith Uploader Service, if you prefer the latter, follow the steps given below. ![]() The vulnerability was introduced in SnagIT Windows 12.4.1. Snagit 2020.1. TechSmith Relay Classic Recorder prior to 5.2.1 on Windows is vulnerable. UploaderService in SnagIT 2019.1.2 allows elevation of privilege by placing an invalid presentation file in %PROGRAMDATA%\TechSmith\TechSmith Recorder\QueuedPresentations and then creating a symbolic link in %PROGRAMDATA%\Techsmith\TechSmith Recorder\InvalidPresentations that points to an arbitrary folder with an arbitrary file name. While the vulnerability CVE-2019-13382 has been acknowledged and fixed by Techsmith in the last year 2019, we came to know about it through update notification from “Snagit 13.1.5” recently, which is also affected. Details & Requirements Full Version Software Processor: 2.4 GHz single core processor (dual core i5 required for video capture) RAM: 1 GB of. To fix the vulnerability, either you need to update Snagit or disable Techsmith Uploader. ![]() If you’re using an old version of Techsmith Snagit, you should know ‘local privilege escalation through insecure file move’ vulnerability exists in its Relay Classic Recorder. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |