CVSS: 10.0EPSS: 0%CPEs: 14EXPL: 0CVE-2006-2869
https://notcve.org/view.php?id=CVE-2006-2869
Unspecified vulnerability in the CHM unpacker in avast! before 4.7.844 has unknown impact and remote attack vectors. • http://secunia.com/advisories/20387 http://www.avast.com/eng/av4_revision_history.html http://www.securityfocus.com/bid/18238 http://www.vupen.com/english/advisories/2006/2115 https://exchange.xforce.ibmcloud.com/vulnerabilities/26927 •
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 1CVE-2006-1892
https://notcve.org/view.php?id=CVE-2006-1892
avast! 4 Linux Home Edition 1.0.5 allows local users to modify permissions of arbitrary files via a symlink attack on the /tmp/_avast4_ temporary directory. • http://secunia.com/advisories/19683 http://securityreason.com/securityalert/712 http://securityreason.com/securityalert/764 http://www.securityfocus.com/archive/1/431019/100/0/threaded http://www.securityfocus.com/bid/17535 http://www.vupen.com/english/advisories/2006/1387 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2006-1355
https://notcve.org/view.php?id=CVE-2006-1355
avast! Antivirus 4.6.763 and earlier sets "BUILTIN\Everyone" permissions to critical system files in the installation folder, which allows local users to gain privileges or disable protection by modifying those files. • http://forum.avast.com/index.php?topic=19862.0 http://secunia.com/advisories/19284 http://www.dslreports.com/forum/remark%2C15601404~days=9999~start=20 http://www.securityfocus.com/bid/17158 http://www.vupen.com/english/advisories/2006/1011 https://exchange.xforce.ibmcloud.com/vulnerabilities/25336 •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3214
https://notcve.org/view.php?id=CVE-2005-3214
Multiple interpretation error in unspecified versions of Avast Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper. • http://marc.info/?l=bugtraq&m=112879611919750&w=2 http://shadock.net/secubox/AVCraftedArchive.html •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2005-2384
https://notcve.org/view.php?id=CVE-2005-2384
Directory traversal vulnerability in a third-party compression library (UNACEV2.DLL), as used in avast! Antivirus Home/Professional Edition 4.6.665 and Server Edition 4.6.460, allows remote attackers to write arbitrary files via an ACE archive containing filenames with (1) .. or (2) absolute pathnames. Vulnerabilidad de franqueo de directorios en librería de compresión (UNACEV2.DLL), usada en avast! Antivirus Home/Professional Edition 4.6.665 y Server Edition 4.6.460 permite que atacantes remotos escriban ficheros arbitrarios mediante un archivo ACE que contiene nombre de ficheros con 1) .. o 2) paths absolutos. • http://secunia.com/advisories/15776 http://secunia.com/secunia_research/2005-20/advisory http://securitytracker.com/id?1014544 http://www.avast.com/eng/av4_revision_history.html •