CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-2761

Unquoted Windows search path vulnerability in the scheduler (sched.exe) in Avira AntiVir, AntiVir Premium, Premium Security Suite, and AntiVir Professional might allow local users to gain privileges via a malicious antivir.exe file in the "C:\Program Files\avira\" directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.4%

CVSS Severity

CVSS v2 Score 7.2

References

http://archives.neohapsis.com/archives/bugtraq/2009-01/0146.html
http://blog.zoller.lu/2009/01/tzo-2009-2-avira-antivir-priviledge.html
http://www.osvdb.org/55647
http://www.vupen.com/english/advisories/2008/3130
https://exchange.xforce.ibmcloud.com/vulnerabilities/46568
http://archives.neohapsis.com/archives/bugtraq/2009-01/0146.html
http://blog.zoller.lu/2009/01/tzo-2009-2-avira-antivir-priviledge.html
http://www.osvdb.org/55647
http://www.vupen.com/english/advisories/2008/3130
https://exchange.xforce.ibmcloud.com/vulnerabilities/46568

Products affected by CVE-2009-2761

Avira » Antivir » Version: Any

cpe:2.3:a:avira:antivir:*
Avira » Antivir » Version: N/A

cpe:2.3:a:avira:antivir:-
Avira » Antivir Security Suite » Version: N/A

cpe:2.3:a:avira:antivir_security_suite:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2761

Products

Pricing

Contact Us