In the version 12.1.0.1005 and below of 360 Total Security, when the Gamefolde calls GameChrome.exe, there exists a local privilege escalation vulnerability. An attacker who could exploit DLL hijacking to bypass the hips could execute arbitrary code on the Local system.
References
Link | Resource |
---|---|
https://security.360.cn/News/news/id/232 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: 360ST
Published: 2020-07-21T17:36:16
Updated: 2020-07-21T17:36:16
Reserved: 2020-07-14T00:00:00
Link: CVE-2020-15724
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-07-21T18:15:20.193
Modified: 2021-07-21T11:39:23.747
Link: CVE-2020-15724
JSON object: View
Redhat Information
No data.
CWE