PT-2020-16895 · Wondershare · Dr. Fone
Published
2020-10-31
·
Updated
2021-07-21
·
CVE-2020-27992
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Dr.Fone version 3.0.0
Description
The issue allows local users to gain privileges via a Trojan horse DriverInstall.exe. This is because the directory %PROGRAMFILES(X86)%Wondersharedr.foneLibraryDriverInstaller has Full Control permissions for BUILTINUsers.
Recommendations
For Dr.Fone version 3.0.0, consider restricting access to the DriverInstall.exe file to prevent unauthorized privilege escalation. Additionally, review and adjust the permissions of the %PROGRAMFILES(X86)%Wondersharedr.foneLibraryDriverInstaller directory to prevent BUILTINUsers from having Full Control. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dr. Fone