In windows manager service, there is a missing permission check. This could lead to set up windows manager service with no additional execution privileges needed.
Related posts