CVE-2009-4556

Metadata

CVE-2009-4556
7.2
securityfocus.com, securityfocus.com, exchange.xforce.ibmcloud.com
2010-01-04
2017-08-17 06:10

Description

Quick Heal AntiVirus Plus 2009 10.00 SP1 and Quick Heal Total Security 2009 10.00 SP1 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs, as demonstrated by replacing quhlpsvc.exe.

Related Vulnerabilities