Avira Software Updater before 2.0.6.21094 allows a DLL side-loading attack. NOTE: The vendor thinks that this vulnerability is invalid because exploiting it would require at least administrator privileges and would gain only SYSTEM privileges
References
Configurations
History
07 Nov 2023, 03:06
Type | Values Removed | Values Added |
---|---|---|
Summary | Avira Software Updater before 2.0.6.21094 allows a DLL side-loading attack. NOTE: The vendor thinks that this vulnerability is invalid because exploiting it would require at least administrator privileges and would gain only SYSTEM privileges |
Information
Published : 2019-10-10 16:15
Updated : 2024-08-05 02:15
NVD link : CVE-2019-17449
Mitre link : CVE-2019-17449
CVE.ORG link : CVE-2019-17449
JSON object : View
Products Affected
avira
- software_updater
CWE
CWE-426
Untrusted Search Path