CVE
- Id
- 41991
- CVE No.
- CVE-2009-4556
- Status
- Candidate
- Description
- Quick Heal AntiVirus Plus 2009 10.00 SP1 and Quick Heal Total Security 2009 10.00 SP1 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs, as demonstrated by replacing quhlpsvc.exe.
- Phase
- Assigned (20100104)
- Votes
- None (candidate not yet proposed)
- Comments