http://blog.zoller.lu/2008/09/notification-and-disclosure-policy.html
Affected products :
- Bitdefender Antivirus 2009 (pre update 13/04/2009)
- Bitdefender Internet Security 2009 (pre update 13/04/2009)
- Bitdefender Total Security 2009 (pre update 13/04/2009)
- Bitdefender Small Office Security (pre update 13/04/2009)
- Bitdefender for Fileservers (pre update 13/04/2009)
- Bitdefender for Samba (pre update 13/04/2009)
- Bitdefender for Sharepoint (pre update 13/04/2009)
- Bitdefender Security for Exchange (pre update 13/04/2009)
===============
1) Introduction
===============
Panda Global Protection 2010
Enjoy total security and ensure information integrity.
Enjoy optimum security and safeguard your valuable data with Panda Global Protection 2010. It protects you from viruses, spyware,
rootkits, hackers, online fraud, identity theft and all other Internet threats. The anti-spam engine will keep your inbox free from
* 3D EQSecure Professional Edition 4.2
* avast! Internet Security 5.0.462
* AVG Internet Security 9.0.791
* Avira Premium Security Suite 10.0.0.536
* BitDefender Total Security 2010 13.0.20.347
* Blink Professional 4.6.1
* CA Internet Security Suite Plus 2010 6.0.0.272
* Comodo Internet Security Free 4.0.138377.779
* DefenseWall Personal Firewall 3.00
* Dr.Web Security Space Pro 6.0.0.03100
> Affected products :
> - Bitdefender Antivirus 2009 (pre update 13/04/2009)
> - Bitdefender Internet Security 2009 (pre update 13/04/2009)
> - Bitdefender Total Security 2009 (pre update 13/04/2009)
Confirmed this is still an issue in BitDefender Internet Security 2010. A scan offers the message:
7 over-compressed items failed to be scanned. This type of objects are not an immediate threat to your system... [and can be skipped (sic)] by adding them as exceptions in the Antivirus->Exceptions.
Source: http://www.quickheal.co.in
VULNERABLE PRODUCTS
Quick Heal Antivirus Plus 2009 for Desktop (v.10.00 SP1)
Quick Heal Total Security 2009 (v.10.00 SP1)
DETAILS
Quick Heal installs the own program files with insecure permissions (Everyone: Full Control). Local attacker (unprivileged user) can replace some files (for example, executable files of Quick Heal services) by malicious file and execute arbitrary code with SYSTEM privileges. This is local privilege escalation vulnerability.
PRL> ===============
PRL> 1) Introduction
PRL> ===============
PRL> Panda Global Protection 2010
PRL> Enjoy total security and ensure information integrity.
PRL> Enjoy optimum security and safeguard your valuable data with
PRL> Panda Global Protection 2010. It protects you from viruses,
PRL> spyware,
1. Autodesk 3ds Max 2010 Release 12.0
2. Autodesk 3ds Max 2011 Release 13.0
3. Avast! Free Antivirus 5.0.545
4. Avira Premium Security Suite 10.0.0.542
5. BitDefender Total Security 2010 - Build 13.0.17.343
6. CorelDraw X5 15.1.0.588
7. Corel Paint Shop Pro Photo X3 13.2.0.41
8. CyberLink PowerDirector 8.00.2220
9. EMC QuickScan Pro Demo 4.7.0 (build 8554)
10. EMC ApplicationXtender Document Manager v6.50.124.0
http://blog.zoller.lu/2008/09/notification-and-disclosure-policy.html
Affected products :
- Bitdefender Antivirus 2009
- Bitdefender Internet Security 2009
- Bitdefender Total Security 2009
- Bitdefender Small Office Security
- Bitdefender for Fileservers
- Bitdefender for Samba
- Bitdefender for Sharepoint
- Bitdefender Security for Exchange
