PT-2009-6230 · Avast · Avast!
Publicado
2009-11-23
·
Atualizado
2018-10-10
·
CVE-2009-4049
CVSS v2.0
7.2
Alta
| Vetor | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
avast! Home and Professional version 4.8.1356.0
Description
The issue is related to a heap-based buffer overflow in the aswRdr.sys driver, which can be exploited by local users. This can be achieved by passing crafted arguments to the IOCTL 0x80002024, potentially leading to memory corruption or privilege escalation.
Recommendations
For avast! Home and Professional version 4.8.1356.0, consider updating to a newer version that addresses this issue, as no specific fix is provided for this version.
Exploit
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Avast!