Vulnerabilities > CVE-2020-28964 - Out-of-bounds Write vulnerability in Tonec Internet Download Manager 6.37.11.1

CVSS 6.7 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

tonec

CWE-787

NVD

Published: 2021-10-22

Updated: 2024-11-21

Summary

Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Search function. This vulnerability allows attackers to escalate local process privileges via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
Application	Tonec Tonec Internet Download Manager 6.37.11.1	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.vulnerability-lab.com/get_content.php?id=2236
https://www.vulnerability-lab.com/get_content.php?id=2236