Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1770

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-1770
Last Modified 05 Sep 2008 12:00:00
Published 31 May 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-1770

Summary

Buffer overflow in the Aavmker4 device driver in Avast! Antivirus 4.6 and possibly other versions allows local users to cause a denial of service (system crash) and possibly execute arbitrary code via certain signals combined with crafted input.

Vulnerable Systems

Application

  • Alwil Avast Antivirus 4.0.168

  • Alwil Avast Antivirus 4.0.172

  • Alwil Avast Antivirus 4.0.183

  • Alwil Avast Antivirus 4.0.202

  • Alwil Avast Antivirus 4.0.211

  • Alwil Avast Antivirus 4.0.229

  • Alwil Avast Antivirus 4.0.235

  • Alwil Avast Antivirus 4.1.260

  • Alwil Avast Antivirus 4.1.268

  • Alwil Avast Antivirus 4.1.278

  • Alwil Avast Antivirus 4.1.287

  • Alwil Avast Antivirus 4.1.289

  • Alwil Avast Antivirus 4.1.304

  • Alwil Avast Antivirus 4.1.319

  • Alwil Avast Antivirus 4.1.335

  • Alwil Avast Antivirus 4.1.342

  • Alwil Avast Antivirus 4.1.357

  • Alwil Avast Antivirus 4.1.389

  • Alwil Avast Antivirus 4.1.396

  • Alwil Avast Antivirus 4.1.412

  • Alwil Avast Antivirus 4.1.418

  • Alwil Avast Antivirus 4.1.501

  • Alwil Avast Antivirus 4.5.518

  • Alwil Avast Antivirus 4.5.549

  • Alwil Avast Antivirus 4.5.561

  • Alwil Avast Antivirus 4.6.603

  • Alwil Avast Antivirus 4.6.623


References

MISC - http://pb.specialised.info/all/adv/avast-adv.txt

BUGTRAQ - 20050526 Alwil Software Avast Antivirus Device Driver Memory Overwrite Vulnerability


Last Updated: 27 May 2016 10:40:17