CVE-2009-4556

Name of the Vulnerable Software and Affected Versions Quick Heal AntiVirus Plus 2009 version 10.00 SP1 Quick Heal Total Security 2009 version 10.00 SP1

Description The issue allows local users to gain privileges by replacing executables with Trojan horse programs due to weak permissions set for the product files. This can be demonstrated by replacing the quhlpsvc.exe executable.

Recommendations For Quick Heal AntiVirus Plus 2009 version 10.00 SP1, consider changing the permissions of the product files to prevent local users from modifying them. For Quick Heal Total Security 2009 version 10.00 SP1, consider changing the permissions of the product files to prevent local users from modifying them. As a temporary workaround, consider restricting access to the quhlpsvc.exe executable until a patch is available.