Security Advisory

CVE-2020-24955

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-01 21:40:58

Last updated 2024-08-04 15:26:08

Assigner mitre

State PUBLISHED

Description

SUPERAntiSyware Professional X Trial 10.0.1206 is vulnerable to local privilege escalation because it allows unprivileged users to restore a malicious DLL from quarantine into the system32 folder via an NTFS directory junction, as demonstrated by a crafted ualapi.dll file that is detected as malware.

← Browse all CVEs View on cve.org ↗