Elevated Privilege Code Execution Vulnerability in ZoneAlarm Firewall and Antivirus Products

Elevated Privilege Code Execution Vulnerability in ZoneAlarm Firewall and Antivirus Products

CVE-2020-6013 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

ZoneAlarm Firewall and Antivirus products before version 15.8.109.18436 allow an attacker who already has access to the system to execute code at elevated privileges through a combination of file permission manipulation and exploitation of Windows CVE-2020-00896 on unpatched systems.

Learn more about our Web Application Penetration Testing UK.