Webroot Software Spy Sweeper Enterprise Local Privilege Escalation Vulnerability

info
discussion
exploit
solution
references

Webroot Software Spy Sweeper Enterprise Local Privilege Escalation Vulnerability

Spy Sweeper Enterprise is reported prone to a local privilege escalation vulnerability. This vulnerability arises due to a design error causing the software to launch a help application with SYSTEM privileges.

Spy Sweeper Enterprise 1.5.1 is reported vulnerable to this issue, however, it is possible that other versions are affected as well.