rcdsvc in the Proofpoint Insider Threat Management Windows Agent (formerly ObserveIT Windows Agent) before 7.9 allows remote authenticated users to execute arbitrary code as SYSTEM because of improper deserialization over named pipes.
References
Link | Resource |
---|---|
https://www.proofpoint.com/us/blog | Vendor Advisory |
https://www.proofpoint.com/us/security/security-advisories/pfpt-sa-2020-0002 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-01-06T13:42:22
Updated: 2021-01-06T13:42:22
Reserved: 2020-02-11T00:00:00
Link: CVE-2020-8884
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-01-06T14:15:13.920
Modified: 2021-01-13T19:21:05.487
Link: CVE-2020-8884
JSON object: View
Redhat Information
No data.
CWE