Количество 4
Количество 4
CVE-2024-29187
WiX toolset lets developers create installers for Windows Installer, the Windows installation engine. When a bundle runs as SYSTEM user, Burn uses GetTempPathW which points to an insecure directory C:\Windows\Temp to drop and load multiple binaries. Standard users can hijack the binary before it's loaded in the application resulting in elevation of privileges. This vulnerability is fixed in 3.14.1 and 4.0.5.
CVE-2024-29187
GitHub: CVE-2024-29187 WiX Burn-based bundles are vulnerable to binary hijack when run as SYSTEM
GHSA-rf39-3f98-xr7r
WiX based installers are vulnerable to binary hijack when run as SYSTEM
BDU:2024-04608
Уязвимость функции GetTempPathW набора инструментов создания установочных пакетов WiX Toolset операционной системы Windows, позволяющая нарушителю повысить свои привилегии
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-29187 WiX toolset lets developers create installers for Windows Installer, the Windows installation engine. When a bundle runs as SYSTEM user, Burn uses GetTempPathW which points to an insecure directory C:\Windows\Temp to drop and load multiple binaries. Standard users can hijack the binary before it's loaded in the application resulting in elevation of privileges. This vulnerability is fixed in 3.14.1 and 4.0.5. | CVSS3: 7.3 | 0% Низкий | почти 2 года назад |
 | CVE-2024-29187 GitHub: CVE-2024-29187 WiX Burn-based bundles are vulnerable to binary hijack when run as SYSTEM | CVSS3: 7.3 | 0% Низкий | 9 месяцев назад |
| GHSA-rf39-3f98-xr7r WiX based installers are vulnerable to binary hijack when run as SYSTEM | CVSS3: 7.3 | 0% Низкий | почти 2 года назад |
 | BDU:2024-04608 Уязвимость функции GetTempPathW набора инструментов создания установочных пакетов WiX Toolset операционной системы Windows, позволяющая нарушителю повысить свои привилегии | CVSS3: 7.3 | 0% Низкий | почти 2 года назад |
Уязвимостей на страницу