PT-2020-15868 · Superantispyware · Superantispyware Professional
B1Nary
·
Published
2020-09-01
·
Updated
2021-07-21
·
CVE-2020-24955
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SUPERAntiSpyware Professional X Trial version 10.0.1206
Description
The issue allows local privilege escalation by permitting unprivileged users to restore a malicious DLL from quarantine into the system32 folder via an NTFS directory junction. This can be achieved by crafting a malicious
ualapi.dll file that is detected as malware.Recommendations
For version 10.0.1206, consider restricting access to the quarantine restoration feature to prevent unprivileged users from restoring malicious files into the system32 folder. As a temporary workaround, avoid using the quarantine restoration feature until a patch is available.
Exploit
Fix
Link Following
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Superantispyware Professional