SecuritySpace - CVE-2020-16980

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2020-16980

Description:
An elevation of privilege vulnerability exists when the Windows iSCSI Target Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.

To exploit the vulnerability, an attacker would first need code execution on a victim system. An attacker could then run a specially crafted application.

The security update addresses the vulnerability by ensuring the Windows iSCSI Target Service properly handles file operations.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2020-16980
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16980
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16980

CVE ID:	CVE-2020-16980
Description:	An elevation of privilege vulnerability exists when the Windows iSCSI Target Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges. To exploit the vulnerability, an attacker would first need code execution on a victim system. An attacker could then run a specially crafted application. The security update addresses the vulnerability by ensuring the Windows iSCSI Target Service properly handles file operations.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2020-16980 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16980 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16980