Vulnerability in Microsoft Forefront Endpoint Protection
CVE-2020-1002
An elevation of privilege vulnerability exists when the MpSigStub.exe for Defender allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Defender Elev…
EPSS: 0.003 (56.2th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Forefront Endpoint Protection — versions 2010
- Microsoft Security Essentials — versions unspecified
- Microsoft System Center — versions Endpoint Protection, 2012 R2 Endpoint Protection, 2012 Endpoint Protection
- Microsoft Windows Defender On 10 For 32-bit Systems — versions unspecified
- Microsoft Windows Defender On 10 For X64-based Systems — versions unspecified
- Microsoft Windows Defender On 10 Version 1607 For 32-bit Systems — versions unspecified
- Microsoft Windows Defender On 10 Version 1607 For X64-based Systems — versions unspecified
- Microsoft Windows Defender On 10 Version 1709 For 32-bit Systems — versions unspecified
- Microsoft Windows Defender On 10 Version 1709 For Arm64-based Systems — versions unspecified
- Microsoft Windows Defender On 10 Version 1709 For X64-based Systems — versions unspecified
References
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1002 (x_refsource_MISC)