Integer overflow vulnerability

This document explains a Remote Code Execution vulnerability CVE-2020-15588 that has been reported.

What was the problem?

The client side of Zohocorp ManageEngine Endpoint Central is affected by a vulnerability that allows for unauthenticated RCE with SYSTEM privileges.

How do I fix it?

This vulnerability has been identified and fixed. To apply the fix, follow the steps mentioned below:

1. Open the service packs page for Device Control Plus. Click on 'Upgrade Pack' to download the PPM for the latest build.
2. Follow the steps under the section 'Instructions to Apply Service Packs/Hot Fixes.'
3. For details on the hotfixes included in the build, refer to the read me.

Keywords: Query Execution, Security Updates, Vulnerabilities and Fixes.