2 matches found
CVE-2020-5754
Webroot endpoint agents are affected by CVE-2020-5754. The vulnerability is a type confusion in the Webroot endpoint service triggered over its listening TCP port, caused by improper type handling, which can lead to the service crashing and the ability to read memory contents. Impacted product/ve...
CVE-2020-5755
CVE-2020-5755 affects Webroot endpoint agents prior to v9.0.28.48. The vulnerability arises from the program’s failure to protect the "%PROGRAMDATA%\WrData\PKG" directory against renaming, which could allow an attacker to trigger a crash or wait for a Webroot service restart to rewrite and hijack...