VYPR
Unrated severityNVD Advisory· Published Mar 23, 2021· Updated Aug 4, 2024

Privilege escalation in McAfee DLP Endpoint for Windows

CVE-2020-7346

Description

Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) for Windows prior to 11.6.100 allows a local, low privileged, attacker through the use of junctions to cause the product to load DLLs of the attacker's choosing. This requires the creation and removal of junctions by the attacker along with sending a specific IOTL command at the correct time.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.