- Total Defense Anti-virus 11.5.2.28
Improper Access Control
Privileged File Delete
The malware scan function in Total Defense Anti-virus is vulnerable to a TOCTOU bug and symbolic link attacks allowing privileged files to be deleted.
- Disable automatic scanner,
- Manually scan malware,
- Delete the malware while scan is in progress,
- Create a symbolic link from the original malware path to a target file.