Rewterz Threat Advisory – McAfee Total Protection (MTP) privilege escalation

Rewterz Threat Alert – Turla APT Group Targeting European Union

December 3, 2020

Rewterz Threat Alert – Active Phishing URLs

December 3, 2020

Rewterz Threat Advisory – McAfee Total Protection (MTP) privilege escalation

Severity

Medium

Analysis Summary

CVE-2020-7335

McAfee Total Protection (MTP) client could allow a local authenticated attacker to gain elevated privileges on the system, caused by a lack of protection due to a timing issue. By creating a junction link, an authenticated attacker could exploit this vulnerability to gain escalated privileges.

Impact

Privilege escalation

Affected Vendors

McAfee

Affected Products

McAfee Total Protection (MTP) Prior to 16.0.29

Remediation

Users are advised to Install or update to McAfee Total Protection (MTP) 16.0.29

https://home.mcafee.com

Rewterz Threat Alert – Turla APT Group Targeting European Union

Rewterz Threat Alert – Active Phishing URLs

Rewterz Threat Advisory – McAfee Total Protection (MTP) privilege escalation

Severity

Analysis Summary

CVE-2020-7335

Impact

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan