Steam client zero-day vulnerability enables arbitrary code to be run with LocalSystem privileges

The vulnerability was reported to Valve Software but was rejected for being 'out of scope'

Valve Software's distinctive Steam logo

Dev Kundaliya
08 August 2019

Tweet
Facebook
LinkedIn
Send to

A security researcher claims to have discovered a new zero-day vulnerability in the Windows client of the popular Steam gaming service. The vulnerability lies within the Steam Client Service and could...

To continue reading...

Don't have an account?

Computing helps IT leaders to make technology a revenue and innovation engine for their businesses. Our unique package of news and analysis enables you to discover what the smartest minds in the industry are doing and scan the horizon for what’s next

REAL-TIME NEWS AND ANALYSIS: find out what’s happening and why in the technology space including news on your competitors and regulators – delivered to your desktop or mobile in a daily newsletter
MARKET TRENDS: learn about the implications for you of the latest shifts in everything from AI to machine learning and blockchains – evaluated in a new monthly editor’s newsletter for CIOs
CIO INTERVIEWS: find out what fellow IT leaders are doing and why

Cloud native explained. An interview with Cheryl Hung, VP Ecosystem at CNCF

Cloud and Infrastructure
30 October 2020

Russian cyber actors are targeting national parliaments and ministries of foreign affairs, US agencies warn

Hackers used ComRAT and Zebrocy malware in these attacks

Threats and Risks
30 October 2020

Cyber actors are attempting to exploit Zerologon and Oracle security flaws, researchers warn

Cyber actors are attempting to exploit Windows Zerologon and Oracle security flaws, researchers warn

The vulnerabilities have already been addressed but many systems remain unpatched

Threats and Risks
30 October 2020

US hospitals under 'imminent threat' of ransomware attack, say CISA and the FBI

'Brazen, heartless and disruptive threat actors' deliberately targeting health facilities during the pandemic

Threats and Risks
29 October 2020

Calling the bluff of breachstortion gangs

Confidence in the defences and using backup data to test and assess is key to standing up to the latest criminal demands

Security
29 October 2020

Mobility must-haves: UEM, cyber security, and remote IT for the distributed workforce

Deskflix: Cyber Security II

Computing Cloud Excellence Awards 2020

Downtime is everyone's problem: creating a culture of ownership for IT issues

Endpoint Management and Security Hub

Steam client zero-day vulnerability enables arbitrary code to be run with LocalSystem privileges

The vulnerability was reported to Valve Software but was rejected for being 'out of scope'

To continue reading...

Cloud native explained. An interview with Cheryl Hung, VP Ecosystem at CNCF

Russian cyber actors are targeting national parliaments and ministries of foreign affairs, US agencies warn

Cyber actors are attempting to exploit Windows Zerologon and Oracle security flaws, researchers warn

US hospitals under 'imminent threat' of ransomware attack, say CISA and the FBI

Calling the bluff of breachstortion gangs

To continue reading...

Sign In

Don't have an account?