VYPR
Unrated severityNVD Advisory· Published Sep 1, 2020· Updated Aug 4, 2024

CVE-2020-24955

CVE-2020-24955

Description

SUPERAntiSyware Professional X Trial 10.0.1206 is vulnerable to local privilege escalation because it allows unprivileged users to restore a malicious DLL from quarantine into the system32 folder via an NTFS directory junction, as demonstrated by a crafted ualapi.dll file that is detected as malware.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.