EUVD-2024-46951

Malicious code in bioql PyPI...

CVE-2024-5803

The AVGUI.exe of AVG/Avast Antivirus before versions before 24.1 can allow a local attacker to escalate privileges via an COM hijack in a time-of-check to time-of-use TOCTOU when self protection is disabled...

CVE-2024-5803

Affecting software: AVG/Avast Antivirus (AVGUI.exe). Vulnerability: Local privilege escalation via a COM hijack under a TOCTOU race condition when self-protection is disabled. Versions affected: before 24.1. Impact: An attacker able to exploit this locally to gain higher privileges. Root cause: C...

CVE-2024-5803 Local privelage escalation via COM hijacking

The AVGUI.exe of AVG/Avast Antivirus before versions before 24.1 can allow a local attacker to escalate privileges via an COM hijack in a time-of-check to time-of-use TOCTOU when self protection is disabled...

PT-2024-37167 · Avast · Avg/Avast Antivirus

Name of the Vulnerable Software and Affected Versions: AVG/Avast Antivirus versions prior to 24.1 Description: The issue allows a local attacker to escalate privileges via a COM hijack in a time-of-check to time-of-use TOCTOU scenario when self-protection is disabled. This occurs in the AVGUI.exe...

Blue Mockingbird Monero-Mining Campaign Exploits Web Apps

A Monero cryptocurrency-mining campaign has emerged that exploits a known vulnerability in public-facing web applications built on the ASP.NET open-source web framework. The campaign has been dubbed Blue Mockingbird by the analysts at Red Canary that discovered the activity. Research uncovered th...