CVE-2020-7279
Summary
| CVE | CVE-2020-7279 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-06-10 12:15:00 UTC |
| Updated | 2023-11-07 03:25:00 UTC |
| Description | DLL Search Order Hijacking Vulnerability in the installer component of McAfee Host Intrusion Prevention System (Host IPS) for Windows prior to 8.0.0 Patch 15 Update allows attackers with local access to execute arbitrary code via execution from a compromised folder. |
Risk And Classification
Problem Types: CWE-426
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | - | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p1 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p10 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p11 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p12 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p13 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p14 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p15 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p2 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p3 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p4 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p5 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p6 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p7 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p8 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p9 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | - | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p1 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p10 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p11 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p12 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p13 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p14 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p15 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p2 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p3 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p4 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p5 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p6 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p7 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p8 | All | All |
| Application | Mcafee | Host Intrusion Prevention | 8.0.0 | p9 | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| McAfee Security Bulletin - McAfee Agent and Host Intrusion Prevention update addresses DLL Search Order Hijacking vulnerability (CVE-2019-3613 and CVE-2020-7279) | kc.mcafee.com | ||
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.