Security Advisory

CVE-2020-5755

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-06-15 19:31:15

Last updated 2024-08-04 08:39:25

Assigner tenable

State PUBLISHED

Description

Webroot endpoint agents prior to version v9.0.28.48 did not protect the "%PROGRAMDATA%WrDataPKG" directory against renaming. This could allow attackers to trigger a crash or wait upon Webroot service restart to rewrite and hijack dlls in this directory for privilege escalation.

← Browse all CVEs View on cve.org ↗