CVE-2005-2940

Name of the Vulnerable Software and Affected Versions Microsoft Antispyware version 1.0.509 (Beta 1)

Description The issue allows local users to potentially gain privileges through a malicious program.exe file in the C: folder. This involves several programs, including GIANTAntiSpywareMain.exe, gcASNotice.exe, gcasServ.exe, gcasSWUpdater.exe, and GIANTAntiSpywareUpdater.exe.

Recommendations For Microsoft Antispyware version 1.0.509 (Beta 1), consider restricting access to the C: folder to prevent malicious files from being executed, and avoid using unquoted Windows search paths until a fix is available.