Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Elevation of Privelage via symlinked file in Avast Antivirus
Vulnerability Description
A sym-linked file accessed via the repair function in Avast Antivirus <24.2 on Windows may allow user to elevate privilege to delete arbitrary files or run processes as NT AUTHORITY\SYSTEM. The vulnerability exists within the "Repair" (settings -> troubleshooting -> repair) feature, which attempts to delete a file in the current user's AppData directory as NT AUTHORITY\SYSTEM. A low-privileged user can make a pseudo-symlink and a junction folder and point to a file on the system. This can provide a low-privileged user an Elevation of Privilege to win a race-condition which will re-create the system files and make Windows callback to a specially-crafted file which could be used to launch a privileged shell instance. This issue affects Avast Antivirus prior to 24.2.
CVSS Information
N/A
Vulnerability Type
CWE-1284
Vulnerability Title
Avast Antivirus 安全漏洞
Vulnerability Description
Avast Antivirus是捷克Avast公司的一套杀毒软件。ecto是elixir-ecto开源的一个用于数据映射和语言集成查询的工具包。 Avast Antivirus 24.2之前版本存在安全漏洞,该漏洞源于低权限用户可以创建伪符号链接和连接文件夹并指向系统上的文件,可能允许用户提升权限以删除任意文件。
CVSS Information
N/A
Vulnerability Type
N/A