4 results (0.004 seconds)

CVSS: 6.8EPSS: 1%CPEs: 1EXPL: 0

WebRoot Spy Sweeper 4.5.9 and earlier does not detect malware based on file contents, which allows remote attackers to bypass malware detection by changing a file's name. WebRoot Spy Sweeper 4.5.9 y anteriores no detectan software malicioso basado en contenidos de archivo, lo cual permite a atacantes remotos evitar la detección de software malicioso cambiando el nombre de un archivo. • http://www.osvdb.org/27538 http://www.securityfocus.com/archive/1/437814/100/200/threaded http://www.sentinel.gr/advisories/SGA-0001.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/27272 •

CVSS: 6.8EPSS: 1%CPEs: 1EXPL: 0

The Compression Sweep feature in WebRoot Spy Sweeper 4.5.9 and earlier does not handle non-ZIP archives, which allows remote attackers to bypass the malware detection via files with (1) RAR, (2) GZ, (3) TAR, (4) CAB, or (5) ACE compression. La funcionalidad Compression Sweep (barrido de compresión) en WebRoot Spy Sweeper 4.5.9 y anteriores no maneja archivos no ZIP, lo cual permite a atacantes remotos evitar la detección de software malicioso mediante archivos con compresión (1) RAR, (2) GZ, (3) TAR, (4) CAB, o (5) ACE. • http://www.osvdb.org/27536 http://www.securityfocus.com/archive/1/437814/100/200/threaded http://www.sentinel.gr/advisories/SGA-0001.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/27266 •

CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 1

WebRoot Spy Sweeper 4.5.9 and earlier allows local users to bypass the "Startup-Shield" security restrictions by modifying certain registry keys. WebRoot Spy Sweeper 4.5.9 y anteriores permite a usuarios locales evitar las restricciones de seguridad "Startup-Shield" modificando determinadas claves de registro. • http://www.osvdb.org/27535 http://www.securityfocus.com/archive/1/437814/100/200/threaded http://www.sentinel.gr/advisories/SGA-0001.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/27264 •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0

The Spy Sweeper Enterprise Client (SpySweeperTray.exe) in WebRoot Spy Sweeper before 2.0 does not drop privileges when using the help functionality, which allows local users to gain privileges. • http://secunia.com/advisories/13187 http://secunia.com/secunia_research/2004-14/advisory http://securitytracker.com/id?1012652 http://www.osvdb.org/12534 https://exchange.xforce.ibmcloud.com/vulnerabilities/18628 •