Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Avast Premium Security Sandbox Protection Link Following Privilege Escalation Vulnerability
Vulnerability Description
Avast Premium Security Sandbox Protection Link Following Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Avast Premium Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the implementation of the sandbox feature. By creating a symbolic link, an attacker can abuse the service to create arbitrary namespace objects. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. . Was ZDI-CAN-20383.
CVSS Information
N/A
Vulnerability Type
使用不正确的解析名称或索引
Vulnerability Title
Avast Premium Security 安全漏洞
Vulnerability Description
Avast Premium Security是捷克Avast公司的一个应用软件。用于全面扫描网站漏洞。 Avast Premium Security存在安全漏洞,该漏洞源于存在权限提升漏洞,允许本地攻击者在受影响的安装上提升权限。
CVSS Information
N/A
Vulnerability Type
N/A