2019-09-24 14:09:43
mitre
PUBLISHED
In Total Defense Anti-virus 9.0.0.773, insecure access control for the directory %PROGRAMDATA%TotalDefenseConsumerISS9 used by ccschedulersvc.exe allows local attackers to hijack dotnetproxy.exe, which leads to privilege escalation when the ccSchedulerSVC service runs the executable.