Описание
In Total Defense Anti-virus 9.0.0.773, resource acquisition from the untrusted search path C:\ used by caschelp.exe allows local attackers to hijack ccGUIFrm.dll, which leads to code execution. SYSTEM-level code execution can be achieved when the ccSchedulerSVC service runs the affected executable.
Ссылки
- ExploitThird Party Advisory
- Vendor Advisory
- ExploitThird Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:totaldefense:anti-virus:9.0.0.773:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00078
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-426
Связанные уязвимости
github
больше 3 лет назад
In Total Defense Anti-virus 9.0.0.773, resource acquisition from the untrusted search path C:\ used by caschelp.exe allows local attackers to hijack ccGUIFrm.dll, which leads to code execution. SYSTEM-level code execution can be achieved when the ccSchedulerSVC service runs the affected executable.
EPSS
Процентиль: 23%
0.00078
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-426