Portrait Dell Color Management Privilege Escalation Vulnerability

A symbolic link vulnerability allowing local low-privileged users to escalate privileges to Administrator has been identified in the Portrait Dell Color Management application, prior to version 3.7.0, for Dell monitors. During installation, the application writes a file to a directory while running with elevated privileges. However, the installer fails to properly validate symbolic links at the destination path, enabling an attacker to create a malicious link that redirects the write operation to an arbitrary location on the system. This flaw can be exploited to create or overwrite files with elevated privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a low-privileged user to gain Administrator rights.

Remediation

Users should upgrade to Dell Color Management version 3.7.0.0 or higher. The latest version can be downloaded from the Portrait Displays website. If the previous version is installed, do not uninstall it before installing the new version, as the installer will overwrite the files and remove the vulnerability.