Windows Store Installer Symbolic Link Attack Vulnerability

Windows Store Installer Symbolic Link Attack Vulnerability

CVE-2019-1270 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

An elevation of privilege vulnerability exists in Windows store installer where WindowsApps directory is vulnerable to symbolic link attack, aka 'Microsoft Windows Store Installer Elevation of Privilege Vulnerability'.

Learn more about our Web Application Penetration Testing UK.