CVE-2020-26894 Information

Description

LiveCode v9.6.1 on Windows allows local low-privileged users to gain privileges by creating a malicious \cmd.exe\ in the folder of the vulnerable LiveCode application. If the application is using LiveCode’s \shell()\ function it will attempt to search for \cmd.exe\ in the folder of the current application and run the malicious \cmd.exe.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reference

https://github.com/livecode/livecode/pull/7454 https://john-woodman.com/posts/LiveCode-Privilege-Escalation-Vulnerability/ https://quality.livecode.com/show_bug.cgi?id=22942

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

7.8