FortiClient VulnerabilityMicrosoft Windows Kernel CVE-2020-1578 Information Disclosure Vulnerability
Description
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a kernel object. To exploit the vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The security update addresses the vulnerability by correcting how the Windows kernel handles memory addresses.
Affected Applications
Windows 10
Windows Server version 2004 (Server Core installation)
Windows Server version 1903 (Server Core installation)
Windows Server version 1909 (Server Core installation)
Windows Server 2019
CVE References
CVE-2020-1578Other References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-1578| ID | 64733 |
| Created | Aug 11, 2020 |
| Description Updated |
Dec 21, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Windows |
| Vendor | Microsoft |
| Patch | auto |
| Application | Windows 10 , Windows Server version 2004 (Server Core installation) , Windows Server version 1903 (Server Core installation) , Windows Server version 1909 (Server Core installation) , Windows Server 2019 |