1 results (0.001 seconds)
CVSS: 7.0EPSS: 0%CPEs: 4EXPL: 1
CVSS: 7.0EPSS: 0%CPEs: 4EXPL: 1CVE-2020-14418
https://notcve.org/view.php?id=CVE-2020-14418
30 Jan 2021 — A TOCTOU vulnerability exists in madCodeHook before 2020-07-16 that allows local attackers to elevate their privileges to SYSTEM. This occurs because path redirection can occur via vectors involving directory junctions. Se presenta una vulnerabilidad TOCTOU en madCodeHook antes del 16-07-2020, que permite a atacantes locales elevar sus privilegios a SYSTEM. Esto ocurre porque el redireccionamiento de ruta puede ocurrir por medio de vectores que involucran uniones de directorio • https://github.com/nettitude/metasploit-modules • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •