An issue was discovered in Dual DHCP DNS Server 7.40. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the DualServer.exe binary.
References
Link | Resource |
---|---|
https://github.com/OffensiveOceloot/advisories/blob/main/CVE-2020-26133.md | |
https://github.com/an0ry/advisories | Third Party Advisory |
https://sourceforge.net/projects/dhcp-dns-server/ | Product |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2020-10-28 18:15
Updated : 2024-02-28 18:08
NVD link : CVE-2020-26133
Mitre link : CVE-2020-26133
CVE.ORG link : CVE-2020-26133
JSON object : View
Products Affected
dual_dhcp_dns_server_project
- dual_dhcp_dns_server
CWE
CWE-732
Incorrect Permission Assignment for Critical Resource