CVE-2009-2761 - Unquoted Windows search path vulnerability in the scheduler (sched.exe) in Avira AntiVir, AntiVir Pr

CVE-2009-2761

Summary

Unquoted Windows search path vulnerability in the scheduler (sched.exe) in Avira AntiVir, AntiVir Premium, Premium Security Suite, and AntiVir Professional might allow local users to gain privileges via a malicious antivir.exe file in the "C:\Program Files\avira\" directory.

References

Vulnerable Configurations

cpe:2.3:a:avira:antivir:*:*:*:*:*:*:*:*
cpe:2.3:a:avira:antivir:*:*:*:*:*:*:*:*
cpe:2.3:a:avira:antivir:*:*:professional:*:*:*:*:*
cpe:2.3:a:avira:antivir:*:*:professional:*:*:*:*:*
cpe:2.3:a:avira:antivir:-:-:premium:*:*:*:*:*
cpe:2.3:a:avira:antivir:-:-:premium:*:*:*:*:*
cpe:2.3:a:avira:antivir_security_suite:-:-:premium:*:*:*:*:*
cpe:2.3:a:avira:antivir_security_suite:-:-:premium:*:*:*:*:*

CVSS

Base:	7.2 (as of 17-08-2017 - 01:30)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

refmap via4

fulldisc	20090115 [TZO-2009-2] Avira Antivir - Priviledge escalation
misc	http://blog.zoller.lu/2009/01/tzo-2009-2-avira-antivir-priviledge.html
osvdb	55647
vupen	ADV-2008-3130
xf	avira-createprocess-privilege-escalation(46568)

Last major update

17-08-2017 - 01:30

Published

13-08-2009 - 16:30

Last modified

17-08-2017 - 01:30