Description
Quick Heal AntiVirus Plus 2009 10.00 SP1 and Quick Heal Total Security 2009 10.00 SP1 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs, as demonstrated by replacing quhlpsvc.exe.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Maxim A. Kulakov · textlocalwindows
https://www.exploit-db.com/exploits/10084
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/53746
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/36662
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/507121/100/0/threaded
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/37033
Scores
EPSS
0.0008
EPSS Percentile
23.6%
Details
CWE
CWE-264
Status
published
Products (2)
quickheal/antivirus_plus_2009
10.00 sp1
quickheal/total_security_2009
10.00 sp1
Published
Jan 04, 2010
Tracked Since
Feb 18, 2026