ID:3005 - Exploit for Permissions, Privileges, and Access Controls in Microsoft .NET Framework - CVE-2020-1066

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:3005 - Exploit for Permissions, Privileges, and Access Controls in Microsoft .NET Framework - CVE-2020-1066

ID:3005 - Exploit for Permissions, Privileges, and Access Controls in Microsoft .NET Framework - CVE-2020-1066

Published: June 3, 2020


Vulnerability identifier: #VU27822
Vulnerability risk: Low
CVE-ID: CVE-2020-1066
CWE-ID: CWE-264
Exploitation vector: Local access
Vulnerable software:
Microsoft .NET Framework

Link to public exploit:


Vulnerability description

The vulnerability allows a local attacker to escalate privileges on the system.

The vulnerability exists due to the .NET Framework does not properly impose security restrictions. A local attacker can run a malicious program and gain elevated privileges on the target system. 


Remediation

Install updates from vendor's website.