CVE-2006-1355

high

Description

avast! Antivirus 4.6.763 and earlier sets "BUILTIN\Everyone" permissions to critical system files in the installation folder, which allows local users to gain privileges or disable protection by modifying those files.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/25336

http://www.vupen.com/english/advisories/2006/1011

http://www.securityfocus.com/bid/17158

http://www.dslreports.com/forum/remark%2C15601404~days=9999~start=20

http://secunia.com/advisories/19284

http://forum.avast.com/index.php?topic=19862.0

Details

Source: Mitre, NVD

Published: 2006-03-22

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H