CVE-2017-12653

360 Total Security 9.0.0.1202 before 2017-07-07 allows Privilege Escalation via a Trojan horse Shcore.dll file in any directory in the PATH, as demonstrated by the C:\Python27 directory.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
VendorProductVersion
360totalsecurity360_total_security
𝑥
≤ 9.0.0.1202
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://blogs.securiteam.com/index.php/archives/3314#more-3314
https://blogs.securiteam.com/index.php/archives/3314#more-3314