mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-30 04:49:42 +00:00
4.7 KiB
4.7 KiB
CVE-2020-16902
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
&color=blue)
Description
An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.
A locally authenticated attacker could run arbitrary code with elevated system privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
The security update addresses the vulnerability by correcting the input sanitization error to preclude unintended elevation.
POC
Reference
No PoCs from references.