My Firewall Plus CVE-2004-1313 Local Security Vulnerability

My Firewall Plus CVE-2004-1313 Local Security Vulnerability

My Firewall Plus is prone to a local security vulnerability. The Smc.exe process in My Firewall Plus 5.0 build 1117, and possibly other versions, does not drop privileges before invoking help, which allows local users to gain privileges.