3 matches found
EUVD-2006-1129
Malware in sbrugna...
Design/Logic Flaw
Grisoft AVG Free 7.1, and other versions including 7.0.308, sets Everyone/Full Control permissions for certain update files including 1 updvers.cfg, 2 incavi.avm, and 3 unspecified drivers, which might allow local users to gain privileges...
CVE-2006-1125
This CVE affects Grisoft AVG Free 7.1 (and earlier 7.0.308) where update-related files (upd_vers.cfg, incavi.avm, and some unspecified drivers) can be granted Everyone/Full Control. The underlying issue is that these files are writable by all users, potentially enabling local privilege escalation...