exploitDog

CVE-2019-3970

Опубликовано: 17 июл. 2019

Источник: nvd

CVSS3: 5.5

CVSS2: 2.1

EPSS Низкий

Описание

Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database. Cavwp.exe loads Comodo antivirus definition database in unsecured global section objects, allowing a local low privileged process to modify this data directly and change virus signatures.

Ссылки

https://www.tenable.com/security/research/tra-2019-34
Exploit
Third Party Advisory
https://www.tenable.com/security/research/tra-2019-34
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:comodo:antivirus:*:*:*:*:*:*:*:*

Версия до 12.0.0.6810 (включая)

EPSS

Процентиль: 15%

0.00048

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-668

Связанные уязвимости

GHSA-2275-cfh4-2ph7

github

около 3 лет назад

Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database. Cavwp.exe loads Comodo antivirus definition database in unsecured global section objects, allowing a local low privileged process to modify this data directly and change virus signatures.

EPSS

Процентиль: 15%

0.00048

Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-668