Page 2 of 7 results (0.006 seconds)

CVSS: 7.8EPSS: 1%CPEs: 4EXPL: 0

Grisoft AVG Anti-Virus before 7.1.407 allows remote attackers to cause a denial of service (crash) via a crafted DOC file that triggers a divide-by-zero error. NOTE: some of these details are obtained from third party information. Grisoft AVG Anti-Virus anterior a 7.1.407 permite a un atacante remoto provocar denegación de servicio (caida) a través de ficheros DOC manipulados que disparan un error division-por-cero. NOTA: algunos de estos detalles se obtuvieron de información de terceros. • http://marc.info/?l=full-disclosure&m=116343152030074&w=2 http://secunia.com/advisories/22811 http://www.grisoft.com/doc/36365/lng/us/tpl/tpl01 http://www.vupen.com/english/advisories/2006/4498 https://exchange.xforce.ibmcloud.com/vulnerabilities/30247 • CWE-369: Divide By Zero •

CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 0

Grisoft AVG Free 7.1, and other versions including 7.0.308, sets Everyone/Full Control permissions for certain update files including (1) upd_vers.cfg, (2) incavi.avm, and (3) unspecified drivers, which might allow local users to gain privileges. • http://archives.neohapsis.com/archives/bugtraq/2006-02/0631.html http://secunia.com/advisories/19118 http://securitytracker.com/id?1015728 http://www.dslreports.com/forum/remark%2C15601404 http://www.securityfocus.com/bid/16952 http://www.vupen.com/english/advisories/2006/0845 https://exchange.xforce.ibmcloud.com/vulnerabilities/25139 •