CVE-2020-36161

January 12, 2021

An issue was discovered in Veritas APTARE 10.4 before 10.4P9 and 10.5 before 10.5P3. By default, on Windows systems, users can create directories under C:\. A low privileged user can create a directory at the configuration file locations. When the Windows system restarts, a malicious OpenSSL engine could exploit arbitrary code execution as SYSTEM. This gives the attacker administrator access on the system, allowing the attacker (by default) to access all data, access all installed applications, etc.

Summary:

An issue was discovered in Veritas APTARE 10.4 before 10.4P9 and 10.5 before 10.5P3. By default, on Windows systems, users can create directories under C:\. A low privileged user can create a directory at the configuration file locations. When the Windows system restarts, a malicious OpenSSL engine could exploit arbitrary code execution as SYSTEM. This gives the attacker administrator access on the system, allowing the attacker (by default) to access all data, access all installed applications, etc.

Reference Links(if available):

  • https://www.veritas.com/content/support/en_US/security/VTS20-009

  • CVSS Score (if available)

    v2: / HIGH

    v3: /

    Links to Exploits(if available)

  • Tags: , , , ,

    You may have missed

    Sliver C2

    Sliver C2 Detected – 95[.]163[.]214[.]182:31337

    May 2, 2024
    Sliver C2

    Sliver C2 Detected – 83[.]229[.]120[.]214:31337

    May 2, 2024
    Sliver C2

    Sliver C2 Detected – 103[.]207[.]68[.]204:31337

    May 2, 2024
    play news ransomware

    Play Ransomware Victim: Profile Products

    May 2, 2024
    play news ransomware

    Play Ransomware Victim: Canatal Industries

    May 2, 2024