First published: Thu Feb 25 2010(Updated: )
Aavmker4.sys in avast! 4.8 through 4.8.1368.0 and 5.0 before 5.0.418.0 running on Windows 2000 and XP does not properly validate input to IOCTL 0xb2d60030, which allows local users to cause a denial of service (system crash) or execute arbitrary code to gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Avast Avast Antivirus Home | <=5.0.396.0 | |
Avast Avast Antivirus Home | =4.8.1169 | |
Avast Avast Antivirus Home | =4.8.1195 | |
Avast Avast Antivirus Home | =4.8.1201 | |
Avast Avast Antivirus Home | =4.8.1227 | |
Avast Avast Antivirus Home | =4.8.1229 | |
Avast Avast Antivirus Home | =4.8.1282 | |
Avast Avast Antivirus Home | =4.8.1290 | |
Avast Avast Antivirus Home | =4.8.1296 | |
Avast Avast Antivirus Home | =4.8.1335 | |
Avast Avast Antivirus Home | =4.8.1351 | |
Avast Avast Antivirus Home | =4.8.1368.0 | |
Avast Avast Antivirus Professional | <=5.0.396.0 | |
Avast Avast Antivirus Professional | =4.8.1169 | |
Avast Avast Antivirus Professional | =4.8.1195 | |
Avast Avast Antivirus Professional | =4.8.1201 | |
Avast Avast Antivirus Professional | =4.8.1227 | |
Avast Avast Antivirus Professional | =4.8.1229 | |
Avast Avast Antivirus Professional | =4.8.1282 | |
Avast Avast Antivirus Professional | =4.8.1290 | |
Avast Avast Antivirus Professional | =4.8.1296 | |
Avast Avast Antivirus Professional | =4.8.1335 | |
Avast Avast Antivirus Professional | =4.8.1351 | |
Avast Avast Antivirus Professional | =4.8.1356.0 | |
Avast Avast Antivirus Professional | =4.8.1368.0 | |
Microsoft Windows 2000 | ||
Microsoft Windows XP |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.