Dr.Web Security Space versions 11 and 12 allow elevation of privilege for local users without administrative privileges to NT AUTHORITYSYSTEM due to insufficient control during autoupdate.
The product does not verify, or incorrectly verifies, the cryptographic signature for data.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Security_space | Drweb | 11.0 (including) | 11.0 (including) |
Security_space | Drweb | 12.0 (including) | 12.0 (including) |