Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Total Defense Anti-virus 9.0.0.773, insecure access control for the directory %PROGRAMDATA%\TotalDefense\Consumer\ISS\9\ used by ccschedulersvc.exe allows local attackers to hijack dotnetproxy.exe, which leads to privilege escalation when the ccSchedulerSVC service runs the executable.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Total Defense Anti-virus 安全漏洞
Vulnerability Description
Total Defense Anti-virus是美国Total Defense公司的一套杀毒软件。 Total Defense Anti-virus 9.0.0.773版本中存在安全漏洞,该漏洞源于程序为ccschedulersvc.exe文件所使用的%PROGRAMDATA%TotalDefenseConsumerISS9路径执行了不安全的访问控制。本地攻击者可利用该漏洞劫持dotnetproxy.exe文件,进而提升权限。
CVSS Information
N/A
Vulnerability Type
N/A