Trustport installs its program files with insecure permissions (Everyone - Full Control). A local attacker (unprivileged user) can replace some files (including executable files of Trustport services) with malicious files and execute arbitrary code with SYSTEM privileges.

-</p>

Make your website safer. Use external penetration testing (http://www.beyondsecurity.com/penetration-testing.html) service. First report ready in one hour!</p>

**Hidden Content: Check the thread to see hidden data.**