2 matches found
CVE-2020-26941
A local authenticated low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite deletion of any file via a symlink, due to insecure permissions. The possibility of exploiting this vulnerability is limited and can only take place during the installation...
CVE-2020-26941
The CVE-2020-26941 issue describes a local, authenticated, low-privilege user able to trigger arbitrary file overwrite (deletion) via a symlink during the installation phase of multiple ESET products, due to insecure installer permissions. Impact is limited to the installation window and requires...