PT-2006-2364 · Avast · Avast Antivirus

Published

2006-03-22

Updated

2017-07-20

CVE-2006-1355

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions avast! Antivirus versions 4.6.763 and earlier

Description The issue allows local users to gain privileges or disable protection by modifying critical system files in the installation folder, due to the software setting "BUILTINEveryone" permissions to these files.

Recommendations For avast! Antivirus versions 4.6.763 and earlier, consider restricting access to the installation folder to prevent local users from modifying critical system files until a fix is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-1355

Affected Products

Avast Antivirus

PT-2006-2364 · Avast · Avast Antivirus

CVE-2006-1355

Related Identifiers

Affected Products

References · 7