| Title | Microword Escan Antivirus For Linux 7.0.32 OS Command Injection |
|---|
| Description | Escan Antivirus for Linux has real-time protection program `rtscanner` run as system service. This program has a OS Command injection vulnerability in quarantine file mechanism. An attacker can send crafted file and gain remote code execution with highest privilege as soon as crafted file writes into victim's disk. |
|---|
| Source | ⚠️ https://github.com/dmknght/FIS_RnD/blob/main/escan_rtscanner_rce.md |
|---|
| User | FPT IS Security (UID 72751) |
|---|
| Submission | 01/18/2025 04:02 (1 Year ago) |
|---|
| Moderation | 01/28/2025 15:42 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 293921 [MicroWorld eScan Antivirus 7.0.32 on Linux Quarantine rtscanner os command injection] |
|---|
| Points | 18 |
|---|