CVE-2009-4215

Panda Global Protection 2010, Internet Security 2010, and Antivirus Pro 2010 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_vista:*:*:32_bit:*:*:*:*:*
cpe:2.3:o:microsoft:windows_vista:*:*:64-bit:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:*:32-bit:*:*:*:*:*
OR cpe:2.3:a:pandasecurity:panda_antivirus:2010:*:pro:*:*:*:*:*
cpe:2.3:a:pandasecurity:panda_global_protection:2010:*:*:*:*:*:*:*
cpe:2.3:a:pandasecurity:panda_internet_security:2010:*:pro:*:*:*:*:*

History

No history.

Information

Published : 2009-12-07 17:30

Updated : 2023-12-10 10:51


NVD link : CVE-2009-4215

Mitre link : CVE-2009-4215

CVE.ORG link : CVE-2009-4215


JSON object : View

Products Affected

pandasecurity

  • panda_global_protection
  • panda_antivirus
  • panda_internet_security

microsoft

  • windows_vista
  • windows_7
  • windows_xp
CWE
CWE-264

Permissions, Privileges, and Access Controls