Ramon

**Name of the Vulnerable Software and Affected Versions** AntiVir PersonalEdition Classic version 7 **Description** The issue allows local users to gain privileges via notepad.exe, which is used to display scan reports, because Classic Planer in AntiVir PersonalEdition Classic does not drop privileges before executing external programs. **Recommendations** For AntiVir PersonalEdition Classic version 7, consider restricting the execution of external programs until a fix is available. As a temporary workaround, avoid using notepad.exe to display scan reports to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** NCP Network Communication Secure Client version 8.11 Build 146 **Description** The issue allows local users to execute arbitrary code by modifying the `connect.bat` script, which is automatically executed by the service after a connection is established. **Recommendations** For NCP Network Communication Secure Client version 8.11 Build 146, consider restricting access to the `connect.bat` script to prevent modification and potential code execution until a fix is available.