Published: 03/07/2020 Updated: 07/11/2023

CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9

CVSS v3 Base Score: 8.8 | Impact Score: 6 | Exploitability Score: 2

VMScore: 409

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.R26 allows local users to create and edit files via symbolic link manipulation in a location they would otherwise not have access to. This is achieved through running a malicious script or program on the target machine.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mcafee total protection

CVE-2020-7283 Exploit The write up can be found in the blog of the RedyOps Labs: labsredyopscom/indexphp/2020/07/14/mcafee-total-protection-mtp-16-0-r26-escalation-of-privilege-cve-2020-7283/ Third Party Tools This exploit code, is heavily based on symboliclink-testing-tools which was Developed by James Forshaw The symboliclink-testing-tools can be found here: https

CWE-269 https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS103062 https://nvd.nist.gov https://github.com/RedyOpsResearchLabs/CVE-2020-7283-McAfee-Total-Protection-MTP-16.0.R26-EoP

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-7283

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect