Borland AccuRev Reprise License Server edit_lf_process Write Arbitrary Files Exploit Update

The specific flaw exists within the edit_lf_process resource of the AccuRev Reprise License Manager service. The issue lies in the ability to write arbitrary files with controlled data. An attacker could leverage this vulnerability to execute arbitrary code under the context of SYSTEM. This update introduces a number of improvements related to the architecture of the agent installed and scenarios where multiple targets are tested.
Exploit type: 
Platform: 
Vulnerabilty ID: 
NOCVE-9999-74481
Product Version: 
2014_R2
Released Date: 
Tuesday, December 1, 2015 - 00:00