Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1274

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2006-1274
Last Modified 07 Mar 2011 09:32:41
Published 19 Mar 2006 06:06:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-1274

Summary

Classic Planer in AntiVir PersonalEdition Classic 7 does not drop privileges before executing external programs, which allows local users to gain privileges via notepad.exe, which is used to display scan reports.

Vulnerable Systems

Application

  • Avira Antivir Personal

  • Avira Antivir Personal 7


References

BID - 17071

VUPEN - ADV-2006-0948

BUGTRAQ - 20060311 AntiVir PersonalEdition Classic: Local Privilige Escalation

SECUNIA - 19217

XF - antivir-notepad-gain-privilege(25244)

OSVDB - 23843

SREASON - 573


Last Updated: 27 May 2016 10:42:00