Vulnerability Description
avast! Antivirus 4.6.763 and earlier sets "BUILTIN\Everyone" permissions to critical system files in the installation folder, which allows local users to gain privileges or disable protection by modifying those files.
CVSS Score
7.2
HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alwil | Avast Antivirus | <= 4.6.763 |
References
- http://forum.avast.com/index.php?topic=19862.0
- http://secunia.com/advisories/19284Vendor Advisory
- http://www.dslreports.com/forum/remark%2C15601404~days=9999~start=20
- http://www.securityfocus.com/bid/17158
- http://www.vupen.com/english/advisories/2006/1011
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25336
- http://forum.avast.com/index.php?topic=19862.0
- http://secunia.com/advisories/19284Vendor Advisory
- http://www.dslreports.com/forum/remark%2C15601404~days=9999~start=20
- http://www.securityfocus.com/bid/17158
- http://www.vupen.com/english/advisories/2006/1011
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25336
FAQ
What is CVE-2006-1355?
CVE-2006-1355 is a vulnerability with a CVSS score of 7.2 (HIGH). avast! Antivirus 4.6.763 and earlier sets "BUILTIN\Everyone" permissions to critical system files in the installation folder, which allows local users to gain privileges or disable protection by modif...
How severe is CVE-2006-1355?
CVE-2006-1355 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-1355?
Check the references section above for vendor advisories and patch information. Affected products include: Alwil Avast Antivirus.