Test Kennung:	1.3.6.1.4.1.25623.1.0.810835
Kategorie:	General
Titel:	AVG Antivirus Code Injection Vulnerability
Zusammenfassung:	AVG Antivirus is prone to a code injection vulnerability.
Beschreibung:	Summary: AVG Antivirus is prone to a code injection vulnerability. Vulnerability Insight: The flaw exists due to: - No use of Protected Processes feature, and therefore an attacker can enter an arbitrary Application Verifier Provider DLL under Image File Execution Options in the registry. - The self-protection mechanism is intended to block all local processes (regardless of privileges) from modifying Image File Execution Options for these products. Vulnerability Impact: Successful exploitation of these vulnerabilities will allow a local attacker to bypass a self-protection mechanism, inject arbitrary code, and take full control of any AVG process via a 'DoubleAgent' attack. Affected Software/OS: AVG Antivirus 17.1 and earlier on Windows Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	BugTraq ID: 97022 Common Vulnerability Exposure (CVE) ID: CVE-2017-5566 http://www.securityfocus.com/bid/97022 http://cybellum.com/doubleagent-taking-full-control-antivirus/ http://cybellum.com/doubleagentzero-day-code-injection-and-persistence-technique/
Copyright	Copyright (C) 2017 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.