An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level.To exploit the vulnerability, an attacker would first have to access the local machine, and then run a malicious program.The update addresses the vulnerability by correcting how .NET Framework activates COM objects., aka '.NET Framework Elevation of Privilege Vulnerability'.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1066 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
History
No history.
Information
Published : 2020-05-21 23:15
Updated : 2024-02-28 17:47
NVD link : CVE-2020-1066
Mitre link : CVE-2020-1066
CVE.ORG link : CVE-2020-1066
JSON object : View
Products Affected
microsoft
- .net_framework
- windows_7
- windows_server_2008
CWE