AnySupport (Remote support solution) before 2019.3.21.0 allows directory traversing because of swprintf function to copy file from a management PC to a client PC. This can be lead to arbitrary file execution.
References
Link | Resource |
---|---|
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36016 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: krcert
Published: 2021-04-22T17:33:16
Updated: 2021-04-22T17:33:16
Reserved: 2020-01-22T00:00:00
Link: CVE-2020-7861
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-04-22T18:15:08.080
Modified: 2021-04-26T20:29:21.097
Link: CVE-2020-7861
JSON object: View
Redhat Information
No data.