CVE-2023-32179

Published: May 3, 2024Modified: Aug 8, 2025

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: zdi-disclosures@trendmicro.com (Secondary)

Description

VIPRE Antivirus Plus FPQuarTransfer Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of VIPRE Antivirus Plus. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the FPQuarTransfer method. By creating a symbolic link, an attacker can abuse the method to delete arbitrary files. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. . Was ZDI-CAN-19397.

Affected (1)

Products: Vipre: Antivirus

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Vipre Antivirus	Before 12.0.1.203

Related CWEs

Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

References (4)

https://success.vipre.com/en_US/antivirus-plus-release-notes/home-plus-release-notes-20230530

Source: zdi-disclosures@trendmicro.com

Release Notes

https://www.zerodayinitiative.com/advisories/ZDI-23-759/

Source: zdi-disclosures@trendmicro.com

Third Party Advisory

https://success.vipre.com/en_US/antivirus-plus-release-notes/home-plus-release-notes-20230530

Source: af854a3a-2127-422b-91ae-364da2661108

Release Notes

https://www.zerodayinitiative.com/advisories/ZDI-23-759/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.