CVE-2020-26133

Sažetak

An issue was discovered in Dual DHCP DNS Server 7.40. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the DualServer.exe binary.

Reference

https://sourceforge.net/projects/dhcp-dns-server/
https://github.com/an0ry/advisories
https://github.com/OffensiveOceloot/advisories/blob/main/CVE-2020-26133.md

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

27-02-2023 - 15:15

Objavljeno

28-10-2020 - 18:15