The Gw2-64.exe in Guild Wars 2 launcher version 106916 suffers from an elevation of privileges vulnerability which can be used by an "Authenticated User" to modify the existing executable file with a binary of his choice. The vulnerability exist due to the improper permissions, with the 'F' flag (Full Control) for 'Everyone' group, making the entire directory 'Guild Wars 2' and its files and sub-dirs world-writable.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-04T16:11:36.586Z
Reserved: 2020-10-21T00:00:00
Link: CVE-2020-27384

No data.

Status : Modified
Published: 2021-06-09T15:15:08.143
Modified: 2024-11-21T05:21:07.993
Link: CVE-2020-27384

No data.