Untrusted search path vulnerability in avast! Free Antivirus version 5.0.594 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse mfc90loc.dll that is located in the same folder as an avast license (.avastlic) file.
Advisories
Source ID Title
EUVD EUVD EUVD-2010-3126 Untrusted search path vulnerability in avast! Free Antivirus version 5.0.594 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse mfc90loc.dll that is located in the same folder as an avast license (.avastlic) file.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-07T02:55:46.759Z

Reserved: 2010-08-26T00:00:00

Link: CVE-2010-3126

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2010-08-26T18:36:35.623

Modified: 2025-04-11T00:51:21.963

Link: CVE-2010-3126

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.