CVE-2020-23060

Sažetak

Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Export/Import function. This vulnerability allows attackers to escalate local process privileges via a crafted ef2 file.

Reference

https://www.vulnerability-lab.com/get_content.php?id=2236
https://cwe.mitre.org/data/definitions/121.html

CVSS

Base:	6.6
Impact:	9.2
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:N/I:C/A:C

Zadnje važnije ažuriranje

26-10-2022 - 19:51

Objavljeno

22-10-2021 - 20:15