McAfee Host Intrusion Prevention System 8.0.0 Patch 15 Untrusted Search Path Vulnerability

Summary

McAfee Host Intrusion Prevention System 8.0.0 Patch 15 suffers from untrusted search path vulnerability

Credit:

The information has been provided by Julian Horoszkiewicz

The original article can be found at:https://kc.mcafee.com/corporate/index?page=content&id=SB10320


Details

DLL Search Order Hijacking Vulnerability in the installer component of McAfee Host Intrusion Prevention System (Host IPS) for Windows prior to 8.0.0 Patch 15 Update allows attackers with local access to execute arbitrary code via execution from a compromised folder.

 

Vulnerable Systems:

McAfee Host Intrusion Prevention System 8.0.0 Patch 15

 

CVE Information:

CVE-2020-7279

Disclosure Timeline:
Published Date:6/10/2020

Categories: News