CVE-2020-26132

Name of the Vulnerable Software and Affected Versions Home DNS Server version 0.10

Description An issue was discovered due to insufficient access restrictions in the default installation directory, allowing an attacker to elevate privileges by replacing the HomeDNSServer.exe binary.

Recommendations For Home DNS Server version 0.10, consider restricting access to the default installation directory to prevent unauthorized replacement of the HomeDNSServer.exe binary. As a temporary workaround, monitor the directory for any changes to the binary and restrict execution of the binary to trusted users until a fix is available.