aavmker4.sys in avast! Home and Professional 4.7 for Windows does not properly validate input to IOCTL 0xb2d60030, which allows local users to gain privileges via certain IOCTL requests.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
21 Nov 2024, 00:44
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/29605 - Vendor Advisory | |
References | () http://www.avast.com/eng/avast-4-home_pro-revision-history.html - | |
References | () http://www.securityfocus.com/archive/1/490321/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/28502 - | |
References | () http://www.securitytracker.com/id?1019732 - | |
References | () http://www.trapkit.de/advisories/TKADV2008-002.txt - | |
References | () http://www.vupen.com/english/advisories/2008/1034/references - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/41527 - |
Information
Published : 2008-04-02 17:44
Updated : 2024-11-21 00:44
NVD link : CVE-2008-1625
Mitre link : CVE-2008-1625
CVE.ORG link : CVE-2008-1625
JSON object : View
Products Affected
avast
- avast_antivirus_professional
- avast_antivirus_home
CWE
CWE-264
Permissions, Privileges, and Access Controls