CVE-2020-26941

Name of the Vulnerable Software and Affected Versions: ESET NOD32 Antivirus versions 13.2 and lower ESET Internet Security versions 13.2 and lower ESET Smart Security versions 13.2 and lower ESET Smart Security Premium versions 13.2 and lower ESET Endpoint Antivirus versions 7.3 and lower ESET Endpoint Security versions 7.3 and lower ESET NOD32 Antivirus Business Edition versions 7.3 and lower ESET Smart Security Business Edition versions 7.3 and lower ESET File Security for Microsoft Windows Server versions 7.2 and lower ESET Mail Security for Microsoft Exchange Server versions 7.2 and lower ESET Mail Security for IBM Domino versions 7.2 and lower ESET Security for Kerio versions 7.2 and lower ESET Security for Microsoft SharePoint Server versions 7.2 and lower

Description: A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (deletion) of any file via a symlink, due to insecure permissions. The possibility of exploiting this issue is limited and can only take place during the installation phase of ESET products. Furthermore, exploitation can only succeed when Self-Defense is disabled.

Recommendations: For ESET NOD32 Antivirus versions 13.2 and lower, update to a version higher than 13.2. For ESET Internet Security versions 13.2 and lower, update to a version higher than 13.2. For ESET Smart Security versions 13.2 and lower, update to a version higher than 13.2. For ESET Smart Security Premium versions 13.2 and lower, update to a version higher than 13.2. For ESET Endpoint Antivirus versions 7.3 and lower, update to a version higher than 7.3. For ESET Endpoint Security versions 7.3 and lower, update to a version higher than 7.3. For ESET NOD32 Antivirus Business Edition versions 7.3 and lower, update to a version higher than 7.3. For ESET Smart Security Business Edition versions 7.3 and lower, update to a version higher than 7.3. For ESET File Security for Microsoft Windows Server versions 7.2 and lower, update to a version higher than 7.2. For ESET Mail Security for Microsoft Exchange Server versions 7.2 and lower, update to a version higher than 7.2. For ESET Mail Security for IBM Domino versions 7.2 and lower, update to a version higher than 7.2. For ESET Security for Kerio versions 7.2 and lower, update to a version higher than 7.2. For ESET Security for Microsoft SharePoint Server versions 7.2 and lower, update to a version higher than 7.2. As a temporary workaround, consider enabling Self-Defense to prevent exploitation.