Details of VAR-201605-0697

ID

VAR-201605-0697

TITLE

Multiple Lenovo Products Dolby Audio X2 Local Privilege Escalation Vulnerability

Trust: 0.3

sources: BID: 92213

DESCRIPTION

Multiple Lenovo Products are prone to a local privilege-escalation vulnerability. A local attacker can exploit this vulnerability to run files with SYSTEM privileges.

Trust: 0.3

sources: BID: 92213

AFFECTED PRODUCTS

vendor:	lenovo	model:	yoga 900-13isk	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	yoga 700-14isk	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	yoga 700-11isk	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	yoga	scope:	eq	version:	500-150	Trust: 0.3
vendor:	lenovo	model:	yoga	scope:	eq	version:	500-140	Trust: 0.3
vendor:	lenovo	model:	y900-17isk	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	y700-17 isk	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	y700-15 isk	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	y700-15 acz	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	y700-14 isk	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	xiaoxin	scope:	eq	version:	700-150	Trust: 0.3
vendor:	lenovo	model:	thinkpad yoga	scope:	eq	version:	140	Trust: 0.3
vendor:	lenovo	model:	thinkpad yoga	scope:	eq	version:	x2600	Trust: 0.3
vendor:	lenovo	model:	thinkpad	scope:	eq	version:	x2600	Trust: 0.3
vendor:	lenovo	model:	thinkpad yoga	scope:	eq	version:	x10	Trust: 0.3
vendor:	lenovo	model:	thinkpad tablet	scope:	eq	version:	x10	Trust: 0.3
vendor:	lenovo	model:	thinkpad t560	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad t460s	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad t460p	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad t460	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad p70	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad p50	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad l560	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad l460	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad e565	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad e560	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad e465	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad e460	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	thinkpad 13e	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	m51-80	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	ideapad isk	scope:	eq	version:	700-170	Trust: 0.3
vendor:	lenovo	model:	ideapad	scope:	eq	version:	700-170	Trust: 0.3
vendor:	lenovo	model:	ideapad isk	scope:	eq	version:	700-150	Trust: 0.3
vendor:	lenovo	model:	ideapad	scope:	eq	version:	700-150	Trust: 0.3
vendor:	lenovo	model:	ideapad 500s-15isk	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	ideapad 500s-14isk	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	ideapad 500s-13isk	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	ideapad isk	scope:	eq	version:	500-150	Trust: 0.3
vendor:	lenovo	model:	ideapad isk	scope:	eq	version:	500-140	Trust: 0.3
vendor:	lenovo	model:	flex3-1580	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	flex3-1480	scope:	eq	version:	0	Trust: 0.3
vendor:	lenovo	model:	edge	scope:	eq	version:	2-15800	Trust: 0.3

sources: BID: 92213

THREAT TYPE

local

Trust: 0.3

sources: BID: 92213

TYPE

Design Error

Trust: 0.3

sources: BID: 92213

EXTERNAL IDS

db:

BID

id:

92213

Trust: 0.3

sources: BID: 92213

REFERENCES

url:	http://www.lenovo.com/ca/en/	Trust: 0.3
url:	https://support.lenovo.com/us/en/product_security/len_4884	Trust: 0.3

sources: BID: 92213

CREDITS

The vendor reported the issue.

Trust: 0.3

sources: BID: 92213

SOURCES

db:

BID

id:

92213

LAST UPDATE DATE

2022-05-17T01:52:38.710000+00:00

SOURCES UPDATE DATE

db:

BID

id:

92213

date:

2016-05-02T00:00:00

SOURCES RELEASE DATE

db:

BID

id:

92213

date:

2016-05-02T00:00:00