BullGuard Premium Protection 20.0.371.8 Symlink TOCTOU race condition
| CVSS Meta Temp Score | Current Exploit Price (โ) | CTI Interest Score |
|---|---|---|
| 5.5 | $0-$5k | 0.64+ |
A vulnerability was found in BullGuard Premium Protection 20.0.371.8. It has been declared as problematic. This vulnerability affects an unknown part of the component Symlink Handler. The manipulation with an unknown input leads to a race condition vulnerability (TOCTOU). The CWE definition for the vulnerability is CWE-367. The impact remains unknown. CVE summarizes:
The malware scan function in BullGuard Premium Protection 20.0.371.8 has a TOCTOU issue that enables a symbolic link attack, allowing privileged files to be deleted.
The weakness was shared 12/26/2019. This vulnerability was named CVE-2019-20000 since 12/26/2019. There are neither technical details nor an exploit publicly available. The current price for an exploit might be approx. USD $0-$5k (estimation calculated on 12/26/2019).
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
Vendor
Name
Class: Race condition / TOCTOU (CWE-367)
Local: Yes
Remote: No
Availability: ๐
Status: Not defined
Price Prediction: ๐
Current Price Estimation: ๐
| 0-Day | unlock | unlock | unlock | unlock |
|---|---|---|---|---|
| Today | unlock | unlock | unlock | unlock |
Threat Intelligence
Threat: ๐
Adversaries: ๐
Geopolitics: ๐
Economy: ๐
Predictions: ๐
Remediation: ๐Recommended: no mitigation known
0-Day Time: ๐
12/26/2019 Advisory disclosed
12/26/2019 VulDB entry created
12/26/2019 CVE assigned
12/26/2019 VulDB last update
CVE: CVE-2019-20000 (๐)Created: 12/26/2019 06:57 PM
Complete: ๐
See the underground prices here!
https://vuldb.com/?id.147724
Gloss