RSS   Vulnerabilities for 'Endpoint agents'   RSS

2020-06-15
 
CVE-2020-5755

CWE-269
 

 
Webroot endpoint agents prior to version v9.0.28.48 did not protect the "%PROGRAMDATA%\WrData\PKG" directory against renaming. This could allow attackers to trigger a crash or wait upon Webroot service restart to rewrite and hijack dlls in this directory for privilege escalation.

 
 
CVE-2020-5754

CWE-843
 

 
Webroot endpoint agents prior to version v9.0.28.48 allows remote attackers to trigger a type confusion vulnerability over its listening TCP port, resulting in crashing or reading memory contents of the Webroot endpoint agent.

 

 >>> Vendor: Webroot 6 Products
Internet security essentials
Security - free
Security - complete
Brightcloud
Endpoint agents
Secureanywhere


Copyright 2024, cxsecurity.com

 

Back to Top