Описание
A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | Windows only |
| esm-apps/bionic | not-affected | Windows only |
| esm-apps/focal | not-affected | Windows only |
| esm-apps/jammy | not-affected | Windows only |
| esm-apps/xenial | not-affected | Windows only |
| focal | not-affected | Windows only |
| jammy | not-affected | Windows only |
| lunar | not-affected | Windows only |
| mantic | not-affected | Windows only |
Показывать по
7.8 High
CVSS3
Связанные уязвимости
A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM.
A binary hijacking vulnerability exists within the VideoLAN VLC media ...
A binary hijacking vulnerability exists within the VideoLAN VLC media player before 3.0.19 on Windows. The uninstaller attempts to execute code with elevated privileges out of a standard user writable location. Standard users may use this to gain arbitrary code execution as SYSTEM.
7.8 High
CVSS3