Vulnerabilities > CVE-2020-28964 - Out-of-bounds Write vulnerability in Tonec Internet Download Manager 6.37.11.1

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

tonec

CWE-787

NVD

Published: 2021-10-22

Updated: 2021-10-28

Summary

Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Search function. This vulnerability allows attackers to escalate local process privileges via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
Application	Tonec Tonec Internet Download Manager 6.37.11.1	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.vulnerability-lab.com/get_content.php?id=2236