Allele Security Alert
ASA-2019-00139
Identifier(s)
ASA-2019-00139, CVE-2019-0135, INTEL-SA-00231
Title
Improper permissions in the installer for Intel Accelerated Storage Manager
Vendor(s)
Intel
Product(s)
Intel Accelerated Storage Manager
Affected version(s)
Intel Accelerated Storage Manager in RSTe v5.5 and before
Fixed version(s)
Intel Accelerated Storage Manager in RSTe version later than v5.5
Proof of concept
Unknown
Description
Improper permissions in the installer for Intel Accelerated Storage Manager in RSTe v5.5 and before may allow an authenticated user to potentially enable escalation of privilege via local access.
Technical details
Unknown
Credits
Marius Gabriel Mihai
Reference(s)
Security Center
https://www.intel.com/content/www/us/en/security-center/default.html
INTEL-SA-00231
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00231.html
CVE-2019-0135
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0135
CVE-2019-0135
https://nvd.nist.gov/vuln/detail/CVE-2019-0135
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: March 17, 2019