PT-2020-16536 · Runrev · Livecode

Published

2020-10-08

Updated

2021-07-21

CVE-2020-26894

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions LiveCode version 9.6.1

Description The issue allows local, low-privileged users to gain privileges by creating a malicious "cmd.exe" in the folder of the vulnerable LiveCode application. This is possible when the application uses LiveCode's shell() function, which attempts to search for "cmd.exe" in the folder of the current application and run the malicious "cmd.exe".

Recommendations For LiveCode version 9.6.1, consider restricting the use of the shell() function until a patch is available, or ensure that no malicious "cmd.exe" can be placed in the application's folder.

Exploit

Fix

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2020-26894

Affected Products

Livecode

PT-2020-16536 · Runrev · Livecode

CVE-2020-26894

Weakness Enumeration

Related Identifiers

Affected Products

References · 5