CVE-2019-17449

Name of the Vulnerable Software and Affected Versions Avira Software Updater versions prior to 2.0.6.21094

Description The issue allows a DLL side-loading attack. It is noted that exploiting this would require at least administrator privileges and would gain only SYSTEM privileges. There are potential abuses related to DLL preloading in Avira Antivirus 2019.

Recommendations For Avira Software Updater versions prior to 2.0.6.21094, update to version 2.0.6.21094 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive system components to minimize the risk of exploitation.