References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Change History

CISA-ADP AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

SEC Consult Vulnerability Lab CWE-367

An attacker with local access the to medical office computer can 
escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by 
exploiting a race condition in the Elefant Update Service during the 
repair or update process. When using the repair function, the service queries the server for a 
list of files and their hashes. In addition, instructions to execute 
binaries to finalize the repair process are included. The executables are executed as "NT AUTHORITY\SYSTEM" after they are 
copied o

SEC Consult Vulnerability Lab https://hasomed.de/produkte/elefant/ [No types assigned]

SEC Consult Vulnerability Lab https://r.sec-consult.com/hasomed [No types assigned]