Rewterz

Rewterz Threat Alert – Turla APT Group Targeting European Union

December 3, 2020
Rewterz

Rewterz Threat Alert – Active Phishing URLs

December 3, 2020

Rewterz Threat Advisory – McAfee Total Protection (MTP) privilege escalation

Severity

Medium

Analysis Summary

CVE-2020-7335

McAfee Total Protection (MTP) client could allow a local authenticated attacker to gain elevated privileges on the system, caused by a lack of protection due to a timing issue. By creating a junction link, an authenticated attacker could exploit this vulnerability to gain escalated privileges.

Impact

Privilege escalation

Affected Vendors

McAfee

Affected Products

McAfee Total Protection (MTP) Prior to 16.0.29

Remediation

Users are advised to Install or update to McAfee Total Protection (MTP) 16.0.29

https://home.mcafee.com

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.