Описание
An issue exists in GalaxyClientService.exe in GOG Galaxy (Beta) 2.0.67.2 through 2.0.71.2 that could allow authenticated users to overwrite and corrupt critical system files via a combination of an NTFS Junction and an RPC Object Manager symbolic link and could result in a denial of service.
Ссылки
EPSS
Процентиль: 43%
0.00207
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-288
Связанные уязвимости
CVSS3: 6.5
github
почти 2 года назад
An issue exists in GalaxyClientService.exe in GOG Galaxy (Beta) 2.0.67.2 through 2.0.71.2 that could allow authenticated users to overwrite and corrupt critical system files via a combination of an NTFS Junction and an RPC Object Manager symbolic link and could result in a denial of service.
EPSS
Процентиль: 43%
0.00207
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-288