Vulnerabilities > CVE-2020-27383 - Improper Preservation of Permissions vulnerability in Blizzard Battle.Net 1.27.1.12428
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Battle.net.exe in Battle.Net 1.27.1.12428 suffers from an elevation of privileges vulnerability which can be used by an "Authenticated User" to modify the existing executable file with a binary of his choice. The vulnerability exist due to weak set of permissions being granted to the "Authenticated Users Group" which grants the (F) Flag aka "Full Control"
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |