CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2006-5940
https://notcve.org/view.php?id=CVE-2006-5940
Unspecified vulnerability in Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote attack vectors related to "Integer Issues" and parsing of .EXE files. Vulnerabilidad no especificada en Grisoft AVG Anti-Virus anterior a 7.1.407 tiene un impacto desconocido y vectores remotos de ataque realciones con "asuntos de integer" y el análisis sintáctivo de los archivos .exe • http://marc.info/?l=full-disclosure&m=116343152030074&w=2 http://secunia.com/advisories/22811 http://www.grisoft.com/doc/36365/lng/us/tpl/tpl01 http://www.vupen.com/english/advisories/2006/4498 • CWE-189: Numeric Errors •
CVSS: 7.8EPSS: 1%CPEs: 4EXPL: 0CVE-2006-5939
https://notcve.org/view.php?id=CVE-2006-5939
Grisoft AVG Anti-Virus before 7.1.407 allows remote attackers to cause a denial of service (crash) via a crafted DOC file that triggers a divide-by-zero error. NOTE: some of these details are obtained from third party information. Grisoft AVG Anti-Virus anterior a 7.1.407 permite a un atacante remoto provocar denegación de servicio (caida) a través de ficheros DOC manipulados que disparan un error division-por-cero. NOTA: algunos de estos detalles se obtuvieron de información de terceros. • http://marc.info/?l=full-disclosure&m=116343152030074&w=2 http://secunia.com/advisories/22811 http://www.grisoft.com/doc/36365/lng/us/tpl/tpl01 http://www.vupen.com/english/advisories/2006/4498 https://exchange.xforce.ibmcloud.com/vulnerabilities/30247 • CWE-369: Divide By Zero •
CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 0CVE-2006-1125
https://notcve.org/view.php?id=CVE-2006-1125
Grisoft AVG Free 7.1, and other versions including 7.0.308, sets Everyone/Full Control permissions for certain update files including (1) upd_vers.cfg, (2) incavi.avm, and (3) unspecified drivers, which might allow local users to gain privileges. • http://archives.neohapsis.com/archives/bugtraq/2006-02/0631.html http://secunia.com/advisories/19118 http://securitytracker.com/id?1015728 http://www.dslreports.com/forum/remark%2C15601404 http://www.securityfocus.com/bid/16952 http://www.vupen.com/english/advisories/2006/0845 https://exchange.xforce.ibmcloud.com/vulnerabilities/25139 •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3371
https://notcve.org/view.php?id=CVE-2005-3371
Multiple interpretation error in AVG 7 7.0.323 allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a dangerous file type by applications on the end system, as demonstrated by a "triple headed" program that contains EXE, EML, and HTML content, aka the "magic byte bug." • http://marc.info/?l=bugtraq&m=113026417802703&w=2 http://www.securityelf.org/magicbyte.html http://www.securityelf.org/magicbyteadv.html http://www.securityelf.org/updmagic.html http://www.securityfocus.com/bid/15189 •