Nik Sharpener Pro Insecure File Permissions Local Privilege Escalation Vulnerability

Nik Sharpener Pro Insecure File Permissions Local Privilege Escalation Vulnerability

Nik Sharpener Pro is prone to a local privilege-escalation vulnerability that stems from a design error. This vulnerability occurs because the application assigns insecure file permissions to certain directories upon installation.

An attacker may exploit this vulnerability to overwrite files with arbitrary code in the affected directories. The arbitrary code will then run with SYSTEM-level privileges. This may facilitate a complete compromise of affected computers.

This issue affects Nik Sharpener Pro 2.0 Inkjet edition; other versions may also be vulnerable.