exploitDog

CVE-2009-4556

Опубликовано: 04 янв. 2010

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

Quick Heal AntiVirus Plus 2009 10.00 SP1 and Quick Heal Total Security 2009 10.00 SP1 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs, as demonstrated by replacing quhlpsvc.exe.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:quickheal:antivirus_plus_2009:10.00:sp1:*:*:*:*:*:*

cpe:2.3:a:quickheal:total_security_2009:10.00:sp1:*:*:*:*:*:*

EPSS

Процентиль: 24%

0.00081

Низкий

7.2 High

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-xf82-rv29-8prj

github

почти 4 года назад

Quick Heal AntiVirus Plus 2009 10.00 SP1 and Quick Heal Total Security 2009 10.00 SP1 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs, as demonstrated by replacing quhlpsvc.exe.

EPSS

Процентиль: 24%

0.00081

Низкий

7.2 High

CVSS2

Дефекты

CWE-264