5 matches found
CVE-2020-1272
An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows Installer...
Microsoft Windows Multiple Vulnerabilities (KB4561612)
This host is missing a critical security update according to Microsoft KB4561612 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Privilege escalation
An elevation of privilege vulnerability exists in Windows Installer because of the way Windows Installer handles certain filesystem operations.To exploit the vulnerability, an attacker would require unprivileged execution on the victim system, aka 'Windows Installer Elevation of Privilege...
CVE-2020-1272
CVE-2020-1272 is a Windows Installer elevation-of-privilege vulnerability. The Windows Installer component is affected by improper input sanitization that leads to insecure library loading, enabling a locally authenticated attacker to execute arbitrary code with elevated system privileges. Exploi...
KB4561673: Windows 8.1 and Windows Server 2012 R2 June 2020 Security Update
The remote Windows host is missing security update 4561673 or cumulative update 4561666. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists in the way that the wlansvc.dll handles objects in memory. An attacker who successfully exploited the...