CVE-2020-12612

Published: Dec 12, 2023

Modified: Aug 4, 2024

PUBLISHED

Description

An issue was discovered in BeyondTrust Privilege Management for Windows through 5.6. When specifying a program to elevate, it can typically be found within the Program Files (x86) folder and therefore uses the %ProgramFiles(x86)% environment variable. However, when this same policy gets pushed to a 32bit machine, this environment variable does not exist. Therefore, since the standard user can create a user level environment variable, they can repoint this variable to any folder the user has full control of. Then, the folder structure can be created in such a way that a rule matches and arbitrary code runs elevated.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.beyondtrust.com/support/changelog/privilege-management-for-windows-5-6-sr1

https://www.beyondtrust.com/trust-center/security-advisories/bt22-09

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-12612

Description

Affected Products

References