Umar Farook

**Name of the Vulnerable Software and Affected Versions** Avast Antivirus versions prior to 20 **Description** An issue in the aswAvLog Log Library allows for an Arbitrary Memory Address Overwrite, resulting in a Denial of Service of the Avast Service (AvastSvc.exe). **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Avast Antivirus versions prior to 20 **Description** An issue was discovered that allows attackers to achieve arbitrary file deletion from the Avast program path via the `aswTask` RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe), when Self Defense is enabled. **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue. As a temporary workaround, consider disabling the Self Defense feature until a patch is available. Restrict access to the `aswTask` RPC endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Avast Antivirus versions prior to 20 **Description** An issue in Avast Antivirus allows attackers to achieve Local Privilege Escalation via the aswTask RPC endpoint for the TaskEx library in the Avast Service. The endpoint "aswTask" is vulnerable, enabling attackers to exploit it for LPE. **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue. As a temporary workaround, consider restricting access to the aswTask RPC endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Avast Antivirus versions prior to 20 **Description** An issue was discovered that allows attackers to trigger a shutdown via RPC from a Low Integrity process. This is achieved by exploiting the aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe), specifically through the TempShutDownMachine endpoint. **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue. As a temporary workaround, consider restricting access to the aswTask RPC endpoint to prevent exploitation.

**Name of the Vulnerable Software and Affected Versions** Avast Antivirus versions prior to 20 **Description** An issue was discovered that allows attackers to trigger a reboot via RPC from a Low Integrity process by exploiting the aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe). **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Avast Antivirus versions prior to 20 **Description** An issue was discovered that allows attackers to make arbitrary changes to the Components section of the Stats.ini file via the "aswTask" RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe) from a Low Integrity process. **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue. As a temporary workaround, consider restricting access to the aswTask RPC endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Avast Antivirus versions prior to 20 **Description** An issue was discovered that allows attackers to enumerate network interfaces and access points from a Low Integrity process via RPC, specifically through the aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe). **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Avast Antivirus versions prior to 20 **Description** An issue was discovered that allows attackers to bypass intended access restrictions on tasks from an untrusted process when Self Defense is enabled, by exploiting the aswTask RPC endpoint for the TaskEx library in the Avast Service. **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Avast Antivirus versions prior to 20 **Description** An issue was discovered that allows attackers to launch the Repair App RPC call from a Low Integrity process through the aswTask RPC endpoint for the TaskEx library in the Avast Service (AvastSvc.exe). **Recommendations** For versions prior to 20, update to version 20 or later to resolve the issue. As a temporary workaround, consider restricting access to the aswTask RPC endpoint to minimize the risk of exploitation.