In Total Defense Anti-virus 9.0.0.773, resource acquisition from the untrusted search path C:\ used by caschelp.exe allows local malicious users to hijack ccGUIFrm.dll, which leads to code execution. SYSTEM-level code execution can be achieved when the ccSchedulerSVC service runs the affected executable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
totaldefense anti-virus 9.0.0.773 |