CVE-2009-4215

Panda Global Protection 2010, Internet Security 2010, and Antivirus Pro 2010 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
Common Weakness Enumeration
References
http://secunia.com/advisories/37373
http://www.pandasecurity.com/homeusers/support/card?id=80164&idIdioma=2
http://www.securityfocus.com/archive/1/507811/100/0/threaded
http://www.securitytracker.com/id?1023121
http://www.vupen.com/english/advisories/2009/3126
https://exchange.xforce.ibmcloud.com/vulnerabilities/54268
http://secunia.com/advisories/37373
http://www.pandasecurity.com/homeusers/support/card?id=80164&idIdioma=2
http://www.securityfocus.com/archive/1/507811/100/0/threaded
http://www.securitytracker.com/id?1023121
http://www.vupen.com/english/advisories/2009/3126
https://exchange.xforce.ibmcloud.com/vulnerabilities/54268