CVE-2016-4025

Severity Score

5.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Avast Internet Security v11.x.x, Pro Antivirus v11.x.x, Premier v11.x.x, Free Antivirus v11.x.x, Business Security v11.x.x, Endpoint Protection v8.x.x, Endpoint Protection Plus v8.x.x, Endpoint Protection Suite v8.x.x, Endpoint Protection Suite Plus v8.x.x, File Server Security v8.x.x, and Email Server Security v8.x.x allow attackers to bypass the DeepScreen feature via a DeviceIoControl call.

Avast Internet Security v11.x.x, Pro Antivirus v11.x.x, Premier v11.x.x, Free Antivirus v11.x.x, Business Security v11.x.x, Endpoint Protection v8.x.x, Endpoint Protection Plus v8.x.x, Endpoint Protection Suite v8.x.x, Endpoint Protection Suite Plus v8.x.x, File Server Security v8.x.x y Email Server Security v8.x.x permiten a atacantes eludir la funcionalidad DeepScreen a través de una llamada DeviceIoControll.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

None

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2016-04-14 CVE Reserved
2016-04-19 CVE Published
2023-03-08 EPSS Updated
2024-08-06 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-254: 7PK - Security Features

CAPEC

References (1)

URL	Tag	Source
https://labs.nettitude.com/blog/escaping-avast-sandbox-using-single-ioctl-cve-2016-4025	Technical Description

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Avast Search vendor "Avast"		Business Security Search vendor "Avast" for product "Business Security"				11.1.2241 Search vendor "Avast" for product "Business Security" and version "11.1.2241"		-		Affected
Avast Search vendor "Avast"		Business Security Search vendor "Avast" for product "Business Security"				11.1.2245 Search vendor "Avast" for product "Business Security" and version "11.1.2245"		-		Affected
Avast Search vendor "Avast"		Business Security Search vendor "Avast" for product "Business Security"				11.1.2253 Search vendor "Avast" for product "Business Security" and version "11.1.2253"		-		Affected
Avast Search vendor "Avast"		Business Security Search vendor "Avast" for product "Business Security"				11.1.2260 Search vendor "Avast" for product "Business Security" and version "11.1.2260"		-		Affected
Avast Search vendor "Avast"		Business Security Search vendor "Avast" for product "Business Security"				11.1.2261 Search vendor "Avast" for product "Business Security" and version "11.1.2261"		-		Affected
Avast Search vendor "Avast"		Business Security Search vendor "Avast" for product "Business Security"				11.1.2262 Search vendor "Avast" for product "Business Security" and version "11.1.2262"		-		Affected
Avast Search vendor "Avast"		Free Antivirus Search vendor "Avast" for product "Free Antivirus"				11.1.2241 Search vendor "Avast" for product "Free Antivirus" and version "11.1.2241"		-		Affected
Avast Search vendor "Avast"		Free Antivirus Search vendor "Avast" for product "Free Antivirus"				11.1.2245 Search vendor "Avast" for product "Free Antivirus" and version "11.1.2245"		-		Affected
Avast Search vendor "Avast"		Free Antivirus Search vendor "Avast" for product "Free Antivirus"				11.1.2253 Search vendor "Avast" for product "Free Antivirus" and version "11.1.2253"		-		Affected
Avast Search vendor "Avast"		Free Antivirus Search vendor "Avast" for product "Free Antivirus"				11.1.2260 Search vendor "Avast" for product "Free Antivirus" and version "11.1.2260"		-		Affected
Avast Search vendor "Avast"		Free Antivirus Search vendor "Avast" for product "Free Antivirus"				11.1.2261 Search vendor "Avast" for product "Free Antivirus" and version "11.1.2261"		-		Affected
Avast Search vendor "Avast"		Free Antivirus Search vendor "Avast" for product "Free Antivirus"				11.1.2262 Search vendor "Avast" for product "Free Antivirus" and version "11.1.2262"		-		Affected
Avast Search vendor "Avast"		Internet Security Search vendor "Avast" for product "Internet Security"				11.1.2241 Search vendor "Avast" for product "Internet Security" and version "11.1.2241"		-		Affected
Avast Search vendor "Avast"		Internet Security Search vendor "Avast" for product "Internet Security"				11.1.2245 Search vendor "Avast" for product "Internet Security" and version "11.1.2245"		-		Affected
Avast Search vendor "Avast"		Internet Security Search vendor "Avast" for product "Internet Security"				11.1.2253 Search vendor "Avast" for product "Internet Security" and version "11.1.2253"		-		Affected
Avast Search vendor "Avast"		Internet Security Search vendor "Avast" for product "Internet Security"				11.1.2260 Search vendor "Avast" for product "Internet Security" and version "11.1.2260"		-		Affected
Avast Search vendor "Avast"		Internet Security Search vendor "Avast" for product "Internet Security"				11.1.2261 Search vendor "Avast" for product "Internet Security" and version "11.1.2261"		-		Affected
Avast Search vendor "Avast"		Internet Security Search vendor "Avast" for product "Internet Security"				11.1.2262 Search vendor "Avast" for product "Internet Security" and version "11.1.2262"		-		Affected
Avast Search vendor "Avast"		Premier Search vendor "Avast" for product "Premier"				11.1.2241 Search vendor "Avast" for product "Premier" and version "11.1.2241"		-		Affected
Avast Search vendor "Avast"		Premier Search vendor "Avast" for product "Premier"				11.1.2245 Search vendor "Avast" for product "Premier" and version "11.1.2245"		-		Affected
Avast Search vendor "Avast"		Premier Search vendor "Avast" for product "Premier"				11.1.2253 Search vendor "Avast" for product "Premier" and version "11.1.2253"		-		Affected
Avast Search vendor "Avast"		Premier Search vendor "Avast" for product "Premier"				11.1.2260 Search vendor "Avast" for product "Premier" and version "11.1.2260"		-		Affected
Avast Search vendor "Avast"		Premier Search vendor "Avast" for product "Premier"				11.1.2261 Search vendor "Avast" for product "Premier" and version "11.1.2261"		-		Affected
Avast Search vendor "Avast"		Premier Search vendor "Avast" for product "Premier"				11.1.2262 Search vendor "Avast" for product "Premier" and version "11.1.2262"		-		Affected
Avast Search vendor "Avast"		Pro Antivirus Search vendor "Avast" for product "Pro Antivirus"				11.1.2241 Search vendor "Avast" for product "Pro Antivirus" and version "11.1.2241"		-		Affected
Avast Search vendor "Avast"		Pro Antivirus Search vendor "Avast" for product "Pro Antivirus"				11.1.2245 Search vendor "Avast" for product "Pro Antivirus" and version "11.1.2245"		-		Affected
Avast Search vendor "Avast"		Pro Antivirus Search vendor "Avast" for product "Pro Antivirus"				11.1.2253 Search vendor "Avast" for product "Pro Antivirus" and version "11.1.2253"		-		Affected
Avast Search vendor "Avast"		Pro Antivirus Search vendor "Avast" for product "Pro Antivirus"				11.1.2260 Search vendor "Avast" for product "Pro Antivirus" and version "11.1.2260"		-		Affected
Avast Search vendor "Avast"		Pro Antivirus Search vendor "Avast" for product "Pro Antivirus"				11.1.2261 Search vendor "Avast" for product "Pro Antivirus" and version "11.1.2261"		-		Affected
Avast Search vendor "Avast"		Pro Antivirus Search vendor "Avast" for product "Pro Antivirus"				11.1.2262 Search vendor "Avast" for product "Pro Antivirus" and version "11.1.2262"		-		Affected
Avast Search vendor "Avast"		Email Server Security Search vendor "Avast" for product "Email Server Security"				<= 8.0.1609 Search vendor "Avast" for product "Email Server Security" and version " <= 8.0.1609"		-		Affected
Avast Search vendor "Avast"		Email Server Security Search vendor "Avast" for product "Email Server Security"				8.0.1606 Search vendor "Avast" for product "Email Server Security" and version "8.0.1606"		-		Affected
Avast Search vendor "Avast"		Endpoint Protection Search vendor "Avast" for product "Endpoint Protection"				<= 8.0.1609 Search vendor "Avast" for product "Endpoint Protection" and version " <= 8.0.1609"		-		Affected
Avast Search vendor "Avast"		Endpoint Protection Search vendor "Avast" for product "Endpoint Protection"				8.0.1606 Search vendor "Avast" for product "Endpoint Protection" and version "8.0.1606"		-		Affected
Avast Search vendor "Avast"		Endpoint Protection Plus Search vendor "Avast" for product "Endpoint Protection Plus"				8.0.1606 Search vendor "Avast" for product "Endpoint Protection Plus" and version "8.0.1606"		-		Affected
Avast Search vendor "Avast"		Endpoint Protection Plus Search vendor "Avast" for product "Endpoint Protection Plus"				8.0.1609 Search vendor "Avast" for product "Endpoint Protection Plus" and version "8.0.1609"		-		Affected
Avast Search vendor "Avast"		Endpoint Protection Suite Search vendor "Avast" for product "Endpoint Protection Suite"				<= 8.0.1609 Search vendor "Avast" for product "Endpoint Protection Suite" and version " <= 8.0.1609"		-		Affected
Avast Search vendor "Avast"		Endpoint Protection Suite Search vendor "Avast" for product "Endpoint Protection Suite"				8.0.1606 Search vendor "Avast" for product "Endpoint Protection Suite" and version "8.0.1606"		-		Affected
Avast Search vendor "Avast"		Endpoint Protection Suite Plus Search vendor "Avast" for product "Endpoint Protection Suite Plus"				<= 8.0.1609 Search vendor "Avast" for product "Endpoint Protection Suite Plus" and version " <= 8.0.1609"		-		Affected
Avast Search vendor "Avast"		Endpoint Protection Suite Plus Search vendor "Avast" for product "Endpoint Protection Suite Plus"				8.0.1606 Search vendor "Avast" for product "Endpoint Protection Suite Plus" and version "8.0.1606"		-		Affected
Avast Search vendor "Avast"		File Server Security Search vendor "Avast" for product "File Server Security"				<= 8.0.1609 Search vendor "Avast" for product "File Server Security" and version " <= 8.0.1609"		-		Affected
Avast Search vendor "Avast"		File Server Security Search vendor "Avast" for product "File Server Security"				8.0.1606 Search vendor "Avast" for product "File Server Security" and version "8.0.1606"		-		Affected