|
|
Family: Windows --> Category: infos
NOD32 Antivirus Local File Creation Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks version number of NOD32
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote Windows host contains an application that is subject to a
local privilege escalation attack.
Description :
The installed version of NOD32 reportedly allows a local user to
restore a malicious file from NOD32's quarantine to an arbitrary
directory to which the user otherwise has only read access. A local
user can exploit this issue to gain admin/system privilege on the
affected host.
See also :
http://www.securityfocus.com/archive/1/429892/30/0/threaded
Solution :
Upgrade to NOD32 version 2.51.26 or later.
Threat Level:
High / CVSS Base Score : 7.0
(AV:L/AC:L/Au:NR/C:C/I:C/A:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
