In Total Defense Anti-virus 9.0.0.773, insecure access control for the directory %PROGRAMDATA%\TotalDefense\Consumer\ISS\9\ used by ccschedulersvc.exe allows local malicious users to hijack dotnetproxy.exe, which leads to privilege escalation when the ccSchedulerSVC service runs the executable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
totaldefense anti-virus 9.0.0.773 |