Vulnerabilities > Quickheal > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-23 | CVE-2022-31466 | Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Quickheal Total Security 10.1.0.316/11.00/12.00 Time of Check - Time of Use (TOCTOU) vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. | 7.0 |
| 2017-05-04 | CVE-2017-8775 | Out-of-bounds Write vulnerability in Quickheal Antivirus Pro, Internet Security and Total Security Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10.1.0.316, and Quick Heal AntiVirus Pro 10.1.0.316 are vulnerable to Memory Corruption while parsing a malformed Mach-O file. | 7.5 |
| 2017-05-04 | CVE-2017-8774 | Out-of-bounds Write vulnerability in Quickheal Antivirus Pro, Internet Security and Total Security Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10.1.0.316, and Quick Heal AntiVirus Pro 10.1.0.316 are vulnerable to Memory Corruption while parsing a malformed Mach-O file. | 7.5 |
| 2017-05-04 | CVE-2017-8773 | Out-of-bounds Write vulnerability in Quickheal Antivirus Pro, Internet Security and Total Security Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10.1.0.316, and Quick Heal AntiVirus Pro 10.1.0.316 are vulnerable to Out of Bounds Write on a Heap Buffer due to improper validation of dwCompressionSize of Microsoft WIM Header WIMHEADER_V1_PACKED. | 7.5 |
| 2017-01-02 | CVE-2017-5005 | Out-of-bounds Write vulnerability in Quickheal Antivirus Pro, Internet Security and Total Security Stack-based buffer overflow in Quick Heal Internet Security 10.1.0.316 and earlier, Total Security 10.1.0.316 and earlier, and AntiVirus Pro 10.1.0.316 and earlier on OS X allows remote attackers to execute arbitrary code via a crafted LC_UNIXTHREAD.cmdsize field in a Mach-O file that is mishandled during a Security Scan (aka Custom Scan) operation. | 7.5 |
| 2013-12-20 | CVE-2013-6767 | Buffer Errors vulnerability in Quickheal Antivirus PRO 7.0.0.1 Stack-based buffer overflow in pepoly.dll in Quick Heal AntiVirus Pro 7.0.0.1 allows local users to execute arbitrary code or cause a denial of service (process crash) via a long *.text value in a PE file. | 7.2 |
| 2010-01-04 | CVE-2009-4556 | Permissions, Privileges, and Access Controls vulnerability in Quickheal Antivirus Plus 2009 and Total Security 2009 Quick Heal AntiVirus Plus 2009 10.00 SP1 and Quick Heal Total Security 2009 10.00 SP1 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs, as demonstrated by replacing quhlpsvc.exe. | 7.2 |