Vulnerability fixed in Quick Heal products

  • 2
    Shares

Out of Bound Write on Stack Buffer

Background
A security vulnerability –  CVE-2017-5005 in Quick Heal allowed illegal Remote Code Execution and Privilege Escalation.

Present Status
• Vulnerability fixed and released as an update to all Quick Heal users on Saturday, 11th June 2016.
• Quick Heal products having virus database of 11th June 2016 [15:01:08] or higher have the fix integrated.

Products that were affected

  • Quick Heal AntiVirus Pro (10.1.0.316 and prior)
  • Quick Heal Internet Security (10.1.0.316 and prior)
  • Quick Heal Total Security (10.1.0.316 and prior)
Rajiv Singha

Rajiv Singha


2 Comments

Leave a Reply to Onil Sonawani Cancel reply

Your email address will not be published.

CAPTCHA Image

  1. Avatar chandan mondalJanuary 10, 2017 at 10:12 AM

    Quick Heal security is solve my all problem to run my computer fast.

    Reply
  2. Avatar Onil SonawaniJanuary 11, 2017 at 3:19 PM

    Hi ,

    Just a small query .

    Solution is released in the form of update or patch or both ?

    Cause update release date is 11 June 2016 ( as per blog ) and patch released on 1 Aug 2016. ( as per :
    https://payatu.com/quick-heal-antivirus-protection-mechanism-failure-vulnerability/ )

    Reply