Fwd: [CIVN-2020-0285] Elevation of Privilege Vulnerability in Microsoft Edge

1 year ago 72

Severity Rating: HIGH

Software Affected

Microsoft Edge (Chromium-based) versions prior to 84.0.522.40

Overview

A vulnerability has been reported in Microsoft Edge (Chromium-based) which

could allow a remote attacker to gain elevated privileges on a targeted

system.

Description

1. Elevation of Privilege Vulnerability ( CVE-2020-1341   ) 

This vulnerability exists in Microsoft Edge (Chromium-based) due to the

flaw that allows DLL files to download without prompting additional

warning. An attacker could exploit this vulnerability by dropping DLL

files.

Successful exploitation of this vulnerability could allow the attacker to

gain elevated privileges on the targeted system.

Solution

Apply appropriate updates as mentioned in Microsoft Security Guidance 

Vendor Information

Microsoft

- -1341

References

Microsoft

- -1341

Borns Tech and Windows World

CVE Name

CVE-2020-1341

About Cert Advisory

Related Posts

Read Entire Article