virus logo FortiClient Vulnerability

Security Vulnerabilities fixed in Steam 2.10.91.91

description-logoDescription

Valve Steam Client for Windows through 2019-08-20 has weak folder permissions, leading to privilege escalation (to NT AUTHORITY SYSTEM) via crafted use of CreateMountPoint.exe and SetOpLock.exe to leverage a TOCTOU race condition.

affected-products-logoAffected Applications

Steam

CVE References

CVE-2019-15315 CVE-2019-15316

Other References

https://help.steampowered.com/
ID 4050
Created Jan 20, 2022
Description
Updated		 Nov 03, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Valve Corporation
Patch manual
Application Steam