Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6962

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2008-6962
Last Modified 13 Aug 2009 12:00:00
Published 13 Aug 2009 12:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-6962

Summary

Avira AntiVir Premium, Premium Security Suite, AntiVir Professional, and AntiVir Personal - FREE allows local users to execute arbitrary code via a crafted IOCTL request that overwrites a kernel pointer.

Vulnerable Systems

Application

  • Avira Antivir -

  • Avira Antivir 6.35.00.00

  • Avira Antivir Personal

  • Avira Antivir Professional

  • Avira Antivir Security Suite -


References

XF - avira-ioctl-privilege-escalation(46567)

MISC - http://www.vupen.com/english/VUPEN-Security-Advisory-20081112.txt

VUPEN - ADV-2008-3130

BID - 32269


Last Updated: 27 May 2016 10:49:24