Quick Heal AntiVirus Plus 2009 10.00 SP1 and Quick Heal Total Security 2009 10.00 SP1 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs, as demonstrated by replacing quhlpsvc.exe.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Antivirus_plus_2009 | Quickheal | 10.00-sp1 (including) | 10.00-sp1 (including) |
| Total_security_2009 | Quickheal | 10.00-sp1 (including) | 10.00-sp1 (including) |
References
- http://secunia.com/advisories/37033
- http://www.securityfocus.com/archive/1/507121/100/0/threaded
- http://www.securityfocus.com/bid/36662
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53746
- http://secunia.com/advisories/37033
- http://www.securityfocus.com/archive/1/507121/100/0/threaded
- http://www.securityfocus.com/bid/36662
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53746