Vigil@nce - Panda Antivirus, Internet Security: privilege escalation via Debug
April 2015 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
A local attacker can debug the password verification process of
Panda Antivirus or Internet Security, in order to alter the
configuration.
– Impacted products: Panda AV, Panda Internet Security
– Severity: 1/4
– Creation date: 15/04/2015
DESCRIPTION OF THE VULNERABILITY
The Panda Antivirus and Panda Internet Security products use a
password to protect the access to their configuration.
The PSUAMain.exe (PSUNConsole.dll) program manages the
verification of this password. However, this programs run as the
current user.
A local attacker can therefore debug the password verification
process of Panda Antivirus or Internet Security, in order to alter
the configuration.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN