4 matches found
CVE-2020-15145
In Composer-Setup for Windows before version 6.0.0, if the developer's computer is shared with other users, a local attacker may be able to exploit the following scenarios. 1. A local regular user may modify the existing C:\ProgramData\ComposerSetup\bin\composer.bat in order to get elevated comma...
CVE-2020-15145
In Composer-Setup for Windows before version 6.0.0, if the developer's computer is shared with other users, a local attacker may be able to exploit the following scenarios. 1. A local regular user may modify the existing C:\ProgramData\ComposerSetup\bin\composer.bat in order to get elevated comma...
CVE-2020-15145
CVE-2020-15145 covers privilege-elevation issues in Windows Composer-Setup prior to 6.0.0. Local attackers could exploit: (1) modify the file C:\ProgramData\ComposerSetup\bin\composer.bat to run elevated commands when an admin runs Composer, (2) place a crafted DLL in C:\ProgramData\ComposerSetup...
CVE-2020-15145 Local privilege elevation in Composer-Setup for Windows
In Composer-Setup for Windows before version 6.0.0, if the developer's computer is shared with other users, a local attacker may be able to exploit the following scenarios. 1. A local regular user may modify the existing C:\ProgramData\ComposerSetup\bin\composer.bat in order to get elevated comma...