Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial installer
CVE-2020-7310

6.9MEDIUM

Key Information:

Vendor: Mcafee,llc
Status: Mcafee Total Protection (mtp) Trial
Vendor: CVE Published:; 21 August 2020

Summary

Privilege Escalation vulnerability in the installer in McAfee McAfee Total Protection (MTP) trial prior to 4.0.161.1 allows local users to change files that are part of write protection rules via manipulating symbolic links to redirect a McAfee file operations to an unintended file.

Affected Version(s)

McAfee Total Protection (MTP) Trial < 4.0.161.1

References

http://service.mcafee.com/FAQDocument.aspx?&id=TS103067

x_refsource_CONFIRM

CVSS V3.1

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Aug 21, 2020
Vulnerability Reserved
Jan 21, 2020