CVE-2006-0951

Name of the Vulnerable Software and Affected Versions NOD32 version 2.5

Description The issue is related to the NOD32 GUI running with SYSTEM privileges when a scheduled on-demand scan is executed, allowing local users to execute arbitrary code. This can be exploited to invoke cmd.exe with SYSTEM privileges, potentially leading to a loss of integrity.

Recommendations For NOD32 version 2.5, consider restricting the privileges of the nod32.exe process when running scheduled scans to minimize the risk of exploitation. As a temporary workaround, consider disabling the scheduled on-demand scan feature until a fix is available.