NVD

Id
51673  
Name
CVE-2009-4556  
Description
Quick Heal AntiVirus Plus 2009 10.00 SP1 and Quick Heal Total Security 2009 10.00 SP1 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs, as demonstrated by replacing quhlpsvc.exe.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2010-01-04  
Modified Date
2010-01-05  
Seq
2009-4556  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
261884 51673 CVE-2009-4556 20091013 Quick Heal Local Privilege Escalation Vulnerability  View
261885 51673 CVE-2009-4556 36662  View
261886 51673 CVE-2009-4556 quickheal-quhlpsvc-priv-escalation(53746)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
39259 JVNDB-2010-005044 Quick Heal AntiVirus Plus 2009 などにおける権限を取得される脆弱性 Quick Heal AntiVirus Plus 2009 および Quick Heal Total Security 2009 は、プロダクトファイルに対する脆弱なパーミッション (エブリワン : フルコントロール) を使用するため、権限を取得される脆弱性が存在します。 CVE-2009-4556 41987 CVE-2009-4556 51673 7.2 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-005044.html 2010-01-04 2012-12-20 View