PT-2025-6898 · Microworld · Microword Escan Antivirus
Published
2025-02-16
·
Updated
2025-02-17
·
CVE-2025-1368
CVSS v4.0
4.6
Medium
| Vector | AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions:
MicroWord eScan Antivirus version 7.0.32
Description:
A vulnerability was found in MicroWord eScan Antivirus on Linux, affecting the function
ReadConfiguration of the file /opt/MicroWorld/etc/mwav.conf. The manipulation of the argument BasePath leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.Recommendations:
As a temporary workaround, consider disabling the
ReadConfiguration function until a patch is available. Restrict access to the file /opt/MicroWorld/etc/mwav.conf to minimize the risk of exploitation. Avoid using the argument BasePath in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.Exploit
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Microword Escan Antivirus