CVE-2006-1274

Published: Mar 19, 2006Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

Classic Planer in AntiVir PersonalEdition Classic 7 does not drop privileges before executing external programs, which allows local users to gain privileges via notepad.exe, which is used to display scan reports.

Affected (2)

Products: Avira: Antivir Personal

Avira

1 product

Antivir Personal

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Avira Antivir Personal	All versions
Avira Antivir Personal	Version 7

References (16)

http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/042868.html

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/19217

Source: cve@mitre.org

Vendor Advisory

http://securityreason.com/securityalert/573

Source: cve@mitre.org

http://www.osvdb.org/23843

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/427412/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/17071

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2006/0948

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/25244

Source: cve@mitre.org

http://lists.grok.org.uk/pipermail/full-disclosure/2006-March/042868.html