Fwd: [CIVN-2020-0285] Elevation of Privilege Vulnerability in Microsoft Edge

Severity Rating: HIGH

Software Affected

Microsoft Edge (Chromium-based) versions prior to 84.0.522.40

Overview

A vulnerability has been reported in Microsoft Edge (Chromium-based) which

could allow a remote attacker to gain elevated privileges on a targeted

system.

Description

1. Elevation of Privilege Vulnerability ( CVE-2020-1341 )

This vulnerability exists in Microsoft Edge (Chromium-based) due to the

flaw that allows DLL files to download without prompting additional

warning. An attacker could exploit this vulnerability by dropping DLL

files.

Successful exploitation of this vulnerability could allow the attacker to

gain elevated privileges on the targeted system.

Solution

Apply appropriate updates as mentioned in Microsoft Security Guidance

https://portal.msrc.microsoft.com/en-us/security-guidance

Vendor Information

Microsoft

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020

- -1341

References

Microsoft

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020

- -1341

Borns Tech and Windows World

https://borncity.com/win/2020/07/17/microsoft-edge-84-0-522-40-freigegeben/

CVE Name

CVE-2020-1341

About Cert Advisory

We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.

Fwd: [CIVN-2020-0285] Elevation of Privilege Vulnerability in Microsoft Edge

About Cert Advisory

Related Posts

Popular Posts

Facebook

Blog Archive