Vulnerabilities

CVE-2020-24397

by Fred · 02/10/2020

An issue was discovered in the client side of Zoho ManageEngine Desktop Central 10.0.0.SP-534. An attacker-controlled server can trigger an integer overflow in InternetSendRequestEx and InternetSendRequestByBitrate that leads to a heap-based buffer overflow and Remote Code Execution with SYSTEM privileges.

Date published : 2020-10-02

https://www.manageengine.com/products/desktop-central/integer-overflow-vulnerability.html

https://www.manageengine.com/products/desktop-central/

Similar

Tags: Cybersecurity Alert