Floragasse 7 – 5th floor, 1040 Vienna
Subscribe to our Newsletter

News

SBA Security Advisory – Polycom BToE Connector – Privilege Escalation Vulnerability (CVE-2015-8300)

Vulnerability Overview

Polycom BToE Connector up to version 2.3.0 allows unprivileged windows users to execute arbitrary code with SYSTEM privileges.

  • Type of Vulnerability: Privilege Escalation
  • Fixed in Version: 3.0.0 (Released March 2015)
  • CVE ID: CVE-2015-8300
  • CVSSv2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:N
  • CVSSv3 Base Score: 6.2

Recommended Countermeasure

We recommend to update Polycom BToE Connector to version 3.0.0 or later. For further details, see the full security advisory.

Links

Full Security Advisory

Credits