CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 3CVE-2010-5075 – Avast! Internet Security 5.0 - 'aswFW.sys' Kernel Driver IOCTL Memory Pool Corruption
https://notcve.org/view.php?id=CVE-2010-5075
Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local users to cause a denial of service (memory corruption and panic) via a crafted IOCTL_ASWFW_COMM_PIDINFO_RESULTS DeviceIoControl request to \\.\aswFW. Desordamiento de enteros en aswFW.sys 5.0.594.0 en Avast! Internet Security 5.0 Korean Trial permitre a usuarios locales causar una denegación de servicio (corrupción de memoria y pánico) a través de una petición modificada de IOCTL_ASWFW_COMM_PIDINFO_RESULTS DeviceIoControl a \\. • https://www.exploit-db.com/exploits/14533 http://www.securityfocus.com/bid/42148 http://x90c.blogspot.com/2011/11/avast-internet-security-aswfwsys-ioctl.html http://x90c.blogspot.com/2011/12/bid-42148-my-avast-kernel-driver-0day_01.html https://web.archive.org/web/20120228033302/http://www.x90c.org/advisories/avast_internet_security_5.0_memory_corruption_advisory.txt • CWE-189: Numeric Errors •