CVE-2022-4173 – Avast and AVG Antivirus for Windows vulnerable to Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-4173
A vulnerability within the malware removal functionality of Avast and AVG Antivirus allowed an attacker with write access to the filesystem, to escalate his privileges in certain scenarios. The issue was fixed with Avast and AVG Antivirus version 22.10. Una vulnerabilidad dentro de la funcionalidad de eliminación de malware de Avast y AVG Antivirus permitió a un atacante con acceso de escritura al sistema de archivos aumentar sus privilegios en ciertos escenarios. El problema se solucionó con Avast y AVG Antivirus versión 22.10. • https://support.norton.com/sp/static/external/tools/security-advisories.html • CWE-269: Improper Privilege Management •
CVE-2016-3986 – Avast! - Authenticode Parsing Memory Corruption
https://notcve.org/view.php?id=CVE-2016-3986
Avast allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via a crafted PE file, related to authenticode parsing. Avast permite a atacantes remotos causar una denegación de servicio (corrupción de memoria) y posiblemente ejecutar código arbitrario a través de un archivo PE manipulado, relacionado con la interpretación del authenticode. • https://www.exploit-db.com/exploits/39530 http://packetstormsecurity.com/files/136090/Avast-Authenticode-Parsing-Memory-Corruption.html https://code.google.com/p/google-security-research/issues/detail?id=668 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2015-8620
https://notcve.org/view.php?id=CVE-2015-8620
Heap-based buffer overflow in the Avast virtualization driver (aswSnx.sys) in Avast Internet Security, Pro Antivirus, Premier, and Free Antivirus before 11.1.2253 allows local users to gain privileges via a Unicode file path in an IOCTL request. Desbordamiento de buffer basado en memoria dinámica en el controlador de virtualización de Avast (aswSnx.sys) en Avast Internet Security, Pro Antivirus, Premier y Free Antivirus en versiones anteriores a 11.1.2253 permite a usuarios locales obtener privilegios a través de una ruta de archivo Unicode en una petición IOCTL. • http://packetstormsecurity.com/files/135859/Avast-11.1.2245-Heap-Overflow.html http://seclists.org/fulldisclosure/2016/Feb/94 http://www.securitytracker.com/id/1035093 https://www.nettitude.co.uk/exploiting-a-kernel-paged-pool-buffer-overflow-in-avast-virtualization-driver • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2015-5662
https://notcve.org/view.php?id=CVE-2015-5662
Directory traversal vulnerability in Avast before 150918-0 allows remote attackers to delete or write to arbitrary files via a crafted entry in a ZIP archive. Vulnerabilidad de salto de directorio en Avast en versiones anteriores a 150918-0 permite a atacantes remotos borrar o escribir en archivos arbitrarios a través de una entrada manipulada en un archivo ZIP • http://jvn.jp/en/jp/JVN25576608/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2015-000160 http://www.securitytracker.com/id/1033860 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVE-2010-5075 – Avast! Internet Security 5.0 - 'aswFW.sys' Kernel Driver IOCTL Memory Pool Corruption
https://notcve.org/view.php?id=CVE-2010-5075
Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local users to cause a denial of service (memory corruption and panic) via a crafted IOCTL_ASWFW_COMM_PIDINFO_RESULTS DeviceIoControl request to \\.\aswFW. Desordamiento de enteros en aswFW.sys 5.0.594.0 en Avast! Internet Security 5.0 Korean Trial permitre a usuarios locales causar una denegación de servicio (corrupción de memoria y pánico) a través de una petición modificada de IOCTL_ASWFW_COMM_PIDINFO_RESULTS DeviceIoControl a \\. • https://www.exploit-db.com/exploits/14533 http://www.securityfocus.com/bid/42148 http://x90c.blogspot.com/2011/11/avast-internet-security-aswfwsys-ioctl.html http://x90c.blogspot.com/2011/12/bid-42148-my-avast-kernel-driver-0day_01.html https://web.archive.org/web/20120228033302/http://www.x90c.org/advisories/avast_internet_security_5.0_memory_corruption_advisory.txt • CWE-189: Numeric Errors •