CVE-2015-7985
Valve Steam 2.10.91.91 uses weak permissions (Users: read and write) for the Install folder, which allows local users to gain privileges via a Trojan horse steam.exe file.
Date published : 2015-11-24
http://www.securityfocus.com/archive/1/536961/100/0/threaded