Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.1
CVSSv3

CVE-2020-8103

Published: 05/06/2020 Updated: 11/06/2020
CVSS v2 Base Score: 3.6 | Impact Score: 4.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.1 | Impact Score: 5.2 | Exploitability Score: 1.8
VMScore: 321
Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P
Subscribe to Antivirus 2020

Vulnerability Summary

A vulnerability in the improper handling of symbolic links in Bitdefender Antivirus Free can allow an unprivileged user to substitute a quarantined file, and restore it to a privileged location. This issue affects Bitdefender Antivirus Free versions before 1.0.17.178.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

bitdefender antivirus 2020

Github Repositories

https://github.com/RedyOpsResearchLabs/-CVE-2020-8099-Bitdefender-Antivirus-Free-EoP

CVE-2020-8103 Link Resolution Privilege Escalation Vulnerability in Bitdefender Antivirus Free

CVE-2020-8103 Exploit The write up can be found in the blog of the RedyOps Labs: labsredyopscom/indexphp/2020/04/24/bitdefender-antivirus-free-escalation-of-privileges/ Third Party Tools This exploit code, is heavily based on symboliclink-testing-tools which was Developed by James Forshaw The symboliclink-testing-tools can be found here: githubcom/googlepro

https://github.com/RedyOpsResearchLabs/-CVE-2020-8103-Bitdefender-Antivirus-Free-EoP

CVE-2020-8103 Link Resolution Privilege Escalation Vulnerability in Bitdefender Antivirus Free

CVE-2020-8103 Exploit The write up can be found in the blog of the RedyOps Labs: labsredyopscom/indexphp/2020/04/24/bitdefender-antivirus-free-escalation-of-privileges/ Third Party Tools This exploit code, is heavily based on symboliclink-testing-tools which was Developed by James Forshaw The symboliclink-testing-tools can be found here: githubcom/googlepro

https://github.com/RedyOpsResearchLabs/CVE-2020-1283_Windows-Denial-of-Service-Vulnerability

Exploit Code for CVE-2020-1283 - Windows-Denial-of-Service-Vulnerability

CVE-2020-8103 Exploit The write up can be found in the blog of the RedyOps Labs: labsredyopscom/indexphp/2020/04/27/dos-via-arbitrary-folder-creation/ Third Party Tools This exploit code, is heavily based on symboliclink-testing-tools which was Developed by James Forshaw The symboliclink-testing-tools can be found here: githubcom/googleprojectzero/symbolicl

References

CWE-59https://www.bitdefender.com/support/security-advisories/link-resolution-privilege-escalation-vulnerability-bitdefender-antivirus-free-va-8604/https://nvd.nist.govhttps://github.com/RedyOpsResearchLabs/-CVE-2020-8099-Bitdefender-Antivirus-Free-EoP
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook