CVE-2006-1274

3 documents3 sources

Severity

7.2HIGH

EPSS

0.1%

top 80.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Avira Antivir Personal

Timeline

PublishedMar 19

Latest updateMay 1

Description

Classic Planer in AntiVir PersonalEdition Classic 7 does not drop privileges before executing external programs, which allows local users to gain privileges via notepad.exe, which is used to display scan reports.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDavira/antivir_personal7

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-gf9h-rc5x-956x: Classic Planer in AntiVir PersonalEdition Classic 7 does not drop privileges before executing external programs, which allows local users to gain priv↗2022-05-01

▶

CVEList

CVE-2006-1274: Classic Planer in AntiVir PersonalEdition Classic 7 does not drop privileges before executing external programs, which allows local users to gain priv↗2006-03-19

▶