Lucene search
HistoryAug 13, 2009 - 4:30 p.m.
CVE-2009-2761
cve-2009-2761
unquoted path vulnerability
avira antivir
scheduler
security vulnerability
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
8.8 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Unquoted Windows search path vulnerability in the scheduler (sched.exe) in Avira AntiVir, AntiVir Premium, Premium Security Suite, and AntiVir Professional might allow local users to gain privileges via a malicious antivir.exe file in the "C:\Program Files\avira" directory.
Affected configurations
Node
aviraantivir
ORaviraantivirprofessional
ORaviraantivirMatch--premium
ORaviraantivir_security_suiteMatch--premium
| CPE | Name | Operator | Version |
|---|---|---|---|
| avira:antivir | avira antivir | eq | * |
| avira:antivir | avira antivir | eq | - |
| avira:antivir_security_suite | avira antivir security suite | eq | - |
Related
kaspersky
kaspersky
KLA10063 ACE vulnerability in Avira
2008-09-28 00:00:00
prion
prion
Design/Logic Flaw
2009-08-13 16:30:00
cvelist
cvelist
CVE-2009-2761
2009-08-13 16:00:00
nvd
nvd
CVE-2009-2761
2009-08-13 16:30:01
openvas
openvas
Microsoft Windows Unquoted Path Vulnerability (SMB Login)
2018-03-23 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
8.8 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2009-2761