VULHUB ™

Doro PDF writer has been reported prone to a vulnerability that may allow a local user to elevate privileges. The issue presents itself because, when installed, the Doro PDF writer registers a printer named 'Doro PDF Writer'. When a document is printed to this handler the print spooler calls the installed print filter. This filter is invoked with SYSTEM privileges. After Doro PDF writer has completely started a file requestor dialog with SYSTEM privileges may be available to the attacker.

Doro PDF writer has been reported prone to a vulnerability that may allow a local user to elevate privileges. The issue presents itself because, when installed, the Doro PDF writer registers a printer named 'Doro PDF Writer'. When a document is printed to this handler the print spooler calls the installed print filter. This filter is invoked with SYSTEM privileges. After Doro PDF writer has completely started a file requestor dialog with SYSTEM privileges may be available to the attacker.