Code injection in Bitdefender products for Windows
Publication date: July 29th, 2019
4.2 - https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N/E:P
Bitdefender Endpoint Security Tools - prior to v.6 .6.8.115, Bitdefender Antivirus Plus - prior to v. 18.104.22.168, Bitdefender Internet Security - prior to v. 22.214.171.124, Bitdefender Total Security - prior to v. 126.96.36.199
An issue was discovered in Bitdefender products for Windows (Bitdefender Endpoint Security Tool versions prior to 188.8.131.52; and Bitdefender Antivirus Plus, Bitdefender Internet Security, and Bitdefender Total Security versions prior to 184.108.40.206) that can lead to local code injection. A local attacker with administrator privileges can create a malicious DLL file in %SystemRoot%\System32\ that will be executed with local user rights.
The issue was resolved in Bitdefender Endpoint Security Tools v. 6 .6.8.115, Bitdefender Antivirus Plus v. 220.127.116.11, Bitdefender Internet Security v. 18.104.22.168, Bitdefender Total Security v. 22.214.171.124
Edsel Valle of NSS Labs