漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
IObit Malware Fighter 4.3.1 Unquoted Service Path Privilege Escalation
Vulnerability Description
IObit Malware Fighter 4.3.1 contains an unquoted service path vulnerability in the IMFservice and LiveUpdateSvc services that allows local attackers to escalate privileges. Attackers can insert a malicious executable file in the unquoted service path and trigger privilege escalation when the service restarts or the system reboots, executing code with LocalSystem privileges.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
未经引用的搜索路径或元素
Vulnerability Title
IOBit Malware Fighter 代码问题漏洞
Vulnerability Description
IOBit Malware Fighter是IOBit公司的一套基于Windows平台的杀毒软件。该软件具有反恶意软件和病毒防护等功能。 IObit Malware Fighter 4.3.1版本存在代码问题漏洞,该漏洞源于IMFservice和LiveUpdateSvc服务存在未加引号的服务路径,可能导致本地攻击者通过在未加引号的服务路径中插入恶意可执行文件实现权限提升。
CVSS Information
N/A
Vulnerability Type
N/A