PT-2020-3902 · Microsoft · Com+1
Published
2020-09-08
·
Updated
2023-12-31
·
CVE-2020-1507
CVSS v3.1
7.9
High
| Vector | AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:N |
Name of the Vulnerable Software and Affected Versions:
Microsoft COM for Windows (affected versions not specified)
Description:
The issue is related to how Microsoft COM for Windows handles objects in memory, specifically due to a buffer overflow. This could allow an attacker to gain elevated privileges on a targeted system by opening a specially crafted file. The vulnerability can be exploited by using such a file, potentially leading to increased privileges for the attacker.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Com
Windows