Privilege Escalation via Symbolic Link Manipulation in McAfee Total Protection

Privilege Escalation via Symbolic Link Manipulation in McAfee Total Protection

CVE-2020-7283 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local users to create and edit files via symbolic link manipulation in a location they would otherwise not have access to. This is achieved through running a malicious script or program on the target machine.

Learn more about our User Device Pen Test.