Security News > 2022 > February > ESET antivirus bug let attackers gain Windows SYSTEM privileges
Image: ESET. Slovak internet security firm ESET released security fixes to address a high severity local privilege escalation vulnerability affecting multiple products on systems running Windows 10 and later or Windows Server 2016 and above.
ZDI's advisory says attackers are only required to "Obtain the ability to execute low-privileged code on the target system," which matches ESET's CVSS severity rating also showing that the bug can be exploited by threat actors with low privileges.
While ESET said it only found out about this bug on November 18, a disclosure timeline available in ZDI's advisory reveals that the vulnerability was reported four months earlier, on June 18, 2021.
Users of ESET Server Security for Microsoft Azure are also advised to immediately update ESET File Security for Microsoft Azure to the latest available version of ESET Server Security for Microsoft Windows Server to address the flaw.
Luckily, ESET found no evidence of exploits designed to target products affected by this security bug in the wild.
"The attack surface can also be eliminated by disabling the Enable advanced scanning via AMSI option in ESET products' Advanced setup," ESET added.