Vulnerability Description
Valve Steam Client for Windows through 2019-08-20 has weak folder permissions, leading to privilege escalation (to NT AUTHORITY\SYSTEM) via crafted use of CreateMountPoint.exe and SetOpLock.exe to leverage a TOCTOU race condition.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Valvesoftware | Steam Client | <= 2019-08-20 |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- https://amonitoring.ru/article/onemore_steam_eop_0day/Third Party Advisory
- https://habr.com/ru/company/pm/blog/464367/Third Party Advisory
- https://www.youtube.com/watch?v=I93aH86BUaEExploitThird Party Advisory
- https://www.youtube.com/watch?v=ZCHrjP0cMewExploitThird Party Advisory
- https://amonitoring.ru/article/onemore_steam_eop_0day/Third Party Advisory
- https://habr.com/ru/company/pm/blog/464367/Third Party Advisory
- https://www.youtube.com/watch?v=I93aH86BUaEExploitThird Party Advisory
- https://www.youtube.com/watch?v=ZCHrjP0cMewExploitThird Party Advisory
FAQ
What is CVE-2019-15316?
CVE-2019-15316 is a vulnerability with a CVSS score of 7.0 (HIGH). Valve Steam Client for Windows through 2019-08-20 has weak folder permissions, leading to privilege escalation (to NT AUTHORITY\SYSTEM) via crafted use of CreateMountPoint.exe and SetOpLock.exe to lev...
How severe is CVE-2019-15316?
CVE-2019-15316 has been rated HIGH with a CVSS base score of 7.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-15316?
Check the references section above for vendor advisories and patch information. Affected products include: Valvesoftware Steam Client, Microsoft Windows.