Max Secure Anti Virus Plus 19.0.4.020 Incorrect Permission Assignment for Critical Resource Vulnerability

Summary

Max Secure Anti Virus Plus 19.0.4.020 has Insecure Permissions on the installation directory. 

Credit:

The information has been provided by Vendor

The original article can be found at:http://hyp3rlinx.altervista.org


Details

Local attackers can replace a .exe or .dll file to achieve privilege escalation.

 

Vulnerable Systems:

Max Secure Anti Virus Plus 19.0.4.020

 

CVE Information:

CVE-2019-19382

 

Disclosure Timeline:
Published Date:12/3/2019

Categories: News