Blog

Rajib Singha
Vulnerability fixed in Quick Heal products
January 5, 2017

Out of Bound Write on Stack Buffer

Background
A security vulnerability –  CVE-2017-5005 in Quick Heal allowed illegal Remote Code Execution and Privilege Escalation.

Present Status
• Vulnerability fixed and released as an update to all Quick Heal users on Saturday, 11th June 2016.
• Quick Heal products having virus database of 11th June 2016 [15:01:08] or higher have the fix integrated.

Products that were affected

  • Quick Heal AntiVirus Pro (10.1.0.316 and prior)
  • Quick Heal Internet Security (10.1.0.316 and prior)
  • Quick Heal Total Security (10.1.0.316 and prior)

SHARE THIS STORY

Have something to add to this story? Share it in the comments.

Rajib Singha
About Rajib Singha
Rajib is an IT security news junkie and a security blogger at Quick Heal. He is passionate about promoting cybersecurity awareness, content and digital marketing,...
Articles by Rajib Singha »

2 Comments

Your email address will not be published.

CAPTCHA Image

  1. chandan mondalJanuary 10, 2017 at 10:12 AM

    Quick Heal security is solve my all problem to run my computer fast.

    Reply
  2. Onil SonawaniJanuary 11, 2017 at 3:19 PM

    Hi ,

    Just a small query .

    Solution is released in the form of update or patch or both ?

    Cause update release date is 11 June 2016 ( as per blog ) and patch released on 1 Aug 2016. ( as per :
    http://payatu.com/quick-heal-antivirus-protection-mechanism-failure-vulnerability/ )

    Reply