CVE-2006-1649

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
06/04/2006
Last modified:
03/04/2025

Description

The "restore to" selection in the "quarantine a file" capability of ESET NOD32 before 2.51.26 allows a restore to any directory that permits read access by the invoking user, which allows local users to create new files despite write-access directory permissions.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:eset_software:nod32_antivirus:1.0.11:*:*:*:*:*:*:*
cpe:2.3:a:eset_software:nod32_antivirus:1.0.12:*:*:*:*:*:*:*
cpe:2.3:a:eset_software:nod32_antivirus:1.0.13:*:*:*:*:*:*:*
cpe:2.3:a:eset_software:nod32_antivirus:2.5:*:*:*:*:*:*:*