CVE-2020-15530

CVE-2020-15530

An issue was discovered in Valve Steam Client 2.10.91.91. The installer allows local users to gain NT AUTHORITYSYSTEM privileges because some parts of %PROGRAMFILES(X86)%Steam and/or %COMMONPROGRAMFILES(X86)%Steam have weak permissions during a critical time window. An attacker can make this time window arbitrarily long by using opportunistic locks.

Source: CVE-2020-15530

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다