Avira Antivirus 15.0.21.86 – ‘.zip’ Directory Traversal / Command Execution Exploit
Ethical Hacking Training Institute
Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan
Credit: R-73eN
# Title : Avira Antivirus >= 15.0.21.86 Command Execution (SYSTEM)
# Tested on: Avira Antivirus 15.0.21.86 in Windows 7
# Vendor : https://www.avira.com/
# Disclosure Timeline:
# 2016-06-28 – Reported to Vendor through Bugcrowd.
# 2016-06-29 – Vendor Replied.
# 2016-07-05 – Vendor Replicated the vulnerability.
# 2016-09-02 – Vendor released updated […]