New Search

Vulnerability in Bitdefender Antivirus Free prior to 1.0.15.138 (CVE-2019-15295)

oval:org.cisecurity:def:8054

An Untrusted Search Path vulnerability in the ServiceInstance.dll library versions 1.0.15.119 and lower as used in Bitdefender Antivirus Free 2020 versions prior to 1.0.15.138 allows an attacker to load an arbitrary DLL file from the search path.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2012
  • Microsoft Windows 8.1
  • Microsoft Windows 7
  • Microsoft Windows 8
  • Microsoft Windows Vista
  • Microsoft Windows Server 2016
  • Microsoft Windows 10
  • Microsoft Windows Server 2003
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows XP
  • Microsoft Windows Server 2012 R2
Class:
vulnerability
Reference(s):
  • untrusted-search-path-vulnerability-serviceinstance-dll-bitdefender-antivirus-free-2020
  • CVE-2019-15295
Product(s):
  • Bitdefender Antivirus Free