CVE-2020-3961

CVE-2020-3961 affects VMware Horizon Client for Windows (before 5.4.3). The root cause is a privilege-escalation flaw caused by folder permission configuration and unsafe loading of libraries, enabling a local user to execute commands with higher privileges. Multiple sources confirm the vulnerabl...

CVE-2020-1272

An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows Installer...

CVE-2020-1272

An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows Installer...

CVE-2020-9858

A dynamic library loading issue was addressed with improved path searching. This issue is fixed in Windows Migration Assistant 2.2.0.0 v. 1A11. Running the installer in an untrusted directory may result in arbitrary code execution...

CVE-2020-9858

A dynamic library loading issue was addressed with improved path searching. This issue is fixed in Windows Migration Assistant 2.2.0.0 v. 1A11. Running the installer in an untrusted directory may result in arbitrary code execution...

CVE-2020-9858

A dynamic library loading issue was addressed with improved path searching. This issue is fixed in Windows Migration Assistant 2.2.0.0 v. 1A11. Running the installer in an untrusted directory may result in arbitrary code execution...

CVE-2020-9858

CVE-2020-9858 relates to Apple Windows Migration Assistant. It describes a dynamic library loading issue in the Windows Installer component; running the installer from an untrusted directory could allow arbitrary code execution. The vulnerability is addressed in Windows Migration Assistant versio...

Apple Windows Migration Assistant Windows Installer Component Dynamic Library Loading Vulnerability

Apple Windows Migration Assistant is an Apple application that supports the migration of data from Windows systems to Mac devices.Windows Installer is Apple Windows Migration Assistant's Windows Installer is the Windows installation program for Apple Windows Migration Assistant. A security...

About the security content of Windows Migration Assistant 2.2.0.0 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

About the security content of Windows Migration Assistant 2.2.0.0

About the security content of Windows Migration Assistant 2.2.0.0 This document describes the security content of Windows Migration Assistant 2.2.0.0 v. 1A11. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an...

CVE-2020-12050

SQLiteODBC 0.9996, as packaged for certain Linux distributions as 0.9996-4, has a race condition leading to root privilege escalation because any user can replace a /tmp/sqliteodbc$$ file with new contents that cause loading of an arbitrary library...

UBUNTU-CVE-2020-12050

SQLiteODBC 0.9996, as packaged for certain Linux distributions as 0.9996-4, has a race condition leading to root privilege escalation because any user can replace a /tmp/sqliteodbc$$ file with new contents that cause loading of an arbitrary library...

Schneider Electric Limited CET850 suffers from a dll hijacking vulnerability

Schneider Electric SA is a global electrical company headquartered in France. A dll hijacking vulnerability exists in Schneider Electric SA CET850, which can be exploited by an attacker to load a malicious dll and execute malicious code...

CVE-2020-3803

Adobe Acrobat and Reader versions 2020.006.20034 and earlier, 2017.011.30158 and earlier, 2017.011.30158 and earlier, 2015.006.30510 and earlier, and 2015.006.30510 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

CVE-2020-3803

Adobe Acrobat and Reader versions 2020.006.20034 and earlier, 2017.011.30158 and earlier, 2017.011.30158 and earlier, 2015.006.30510 and earlier, and 2015.006.30510 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

Privilege escalation

Adobe Acrobat and Reader versions 2020.006.20034 and earlier, 2017.011.30158 and earlier, 2017.011.30158 and earlier, 2015.006.30510 and earlier, and 2015.006.30510 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

CVE-2020-3803

Adobe Acrobat and Reader versions 2020.006.20034 and earlier, 2017.011.30158 and earlier, 2017.011.30158 and earlier, 2015.006.30510 and earlier, and 2015.006.30510 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...

Adobe Reader < 2015.006.30518 / 2017.011.30166 / 2020.006.20042 Multiple Vulnerabilities (APSB20-13) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 2015.006.30518, 2017.011.30166, or 2020.006.20042. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat and Reader versions 2020.006.20034 and earlier, 2017.011.30158 and earlier, 2017.011.3015...

CVE-2020-0798

An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows Installer...

Privilege escalation

An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows Installer...