Network Security: Detailed info on AVG 7 granting Everyone Full Control to updated files... even its driver

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Vuln-Dev

Subject:	AVG 7 granting Everyone Full Control to updated files... even its drivers
Date:	4 Mar 2006 03:56:19 -0000

Subject:

AVG 7 granting Everyone Full Control to updated files... even its drivers

Date:

4 Mar 2006 03:56:19 -0000

There is more here: http://www.dslreports.com/forum/remark,15601404 Basically, a first time install of AVG 7 will have default permissions. \Program Files\Grisoft\AVG Free has inherited permissions from \Program Files. This is preferred, because lower privileged accounts can't damage it. Once any files are updated, the permissions are changed to "Everyone" with "Full Control" on the updated files, and will change the owner to whomever is logged in. Even limited users become owners. That does not stop at \Program Files\Grisoft\AVG Free, it will even do that to AVG's drivers in %windir%\system32\drivers.

<Prev in Thread]	Current Thread	[Next in Thread>
AVG 7 granting Everyone Full Control to updated files... even its drivers, redxii1234 <= Re: AVG 7 granting Everyone Full Control to updated files... even its drivers, Matti Haack

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	PHP-Stats <= 0.1.9.1 remote commands execution, rgod
Next by Date:	Wbb 2.3. xss, r57shell
Previous by Thread:	PHP-Stats <= 0.1.9.1 remote commands execution, rgod
Next by Thread:	Re: AVG 7 granting Everyone Full Control to updated files... even its drivers, Matti Haack
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

PHP-Stats <= 0.1.9.1 remote commands execution, rgod

Next by Date:

Wbb 2.3. xss, r57shell

Previous by Thread:

PHP-Stats <= 0.1.9.1 remote commands execution, rgod

Next by Thread:

Re: AVG 7 granting Everyone Full Control to updated files... even its drivers, Matti Haack

Indexes:

[Date] [Thread] [Top] [All Lists]