hackhappy.org
AVG & Avast Secure Browser Permission Hijacking CVE-2019-17190 - HackHappy's Ethical Hacking Security Blog
Vulnerability Introduction I recently discovered a vulnerability in the Avast and AVG Secure Browser that allows low privileged users to gain access to any file on the system. Successful exploitation results in Full Control permissions for the user group Everyone. This vulnerability can lead to code execution as NT AUTHORTY\SYSTEM as the user could gain …