PT-2024-38188 · Avast · Avast Free Antivirus
Izobashi
+3
·
Published
2024-07-29
·
Updated
2024-12-09
·
CVE-2024-7228
CVSS v3.1
6.1
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H |
Name of the Vulnerable Software and Affected Versions
Avast Free Antivirus (affected versions not specified)
Description
This issue allows local attackers to create a denial-of-service condition on affected installations of Avast Free Antivirus. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this issue. The specific flaw exists within the Avast Service, where an attacker can abuse the service to create a folder by creating a symbolic link, leading to a denial-of-service condition on the system.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this issue.
Fix
Link Following
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Avast Free Antivirus