CVE-2019-3742

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell/Alienware Digital Delivery versions prior to 3.5.2013

Description The issue allows a local non-privileged malicious user to exploit a named pipe that performs binary deserialization via a process hollowing technique. This technique enables the injection of malicious code to run an executable with elevated privileges.

Recommendations For versions prior to 3.5.2013, update to version 3.5.2013 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-3742

Affected Products

Dell/Alienware Digital Delivery

CVE-2019-3742

Related Identifiers

Affected Products

References · 3