In Total Defense Anti-virus 9.0.0.773, insecure access control for the directory %PROGRAMDATA%\TotalDefense\Consumer\ISS\9\bd\TDUpdate2\ used by AMRT.exe allows local malicious users to hijack bdcore.dll, which leads to privilege escalation when the AMRT service loads the DLL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
totaldefense anti-virus 9.0.0.773 |