Unrated severityNVD Advisory· Published Sep 1, 2020· Updated Aug 4, 2024
CVE-2020-24955
CVE-2020-24955
Description
SUPERAntiSyware Professional X Trial 10.0.1206 is vulnerable to local privilege escalation because it allows unprivileged users to restore a malicious DLL from quarantine into the system32 folder via an NTFS directory junction, as demonstrated by a crafted ualapi.dll file that is detected as malware.
Affected products
2- SUPERAntiSyware/SUPERAntiSyware Professional X Trialdescription
- Range: =10.0.1206
Patches
Vulnerability mechanics
References
1- www.youtube.com/watchmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.