CVE-2010-0705
25.02.2010, 18:30
Aavmker4.sys in avast! 4.8 through 4.8.1368.0 and 5.0 before 5.0.418.0 running on Windows 2000 and XP does not properly validate input to IOCTL 0xb2d60030, which allows local users to cause a denial of service (system crash) or execute arbitrary code to gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption.Enginsight
| Vendor | Product | Version |
|---|---|---|
| avast | avast_antivirus_home | 𝑥 ≤ 5.0.396.0 |
| avast | avast_antivirus_home | 4.8.1169 |
| avast | avast_antivirus_home | 4.8.1195 |
| avast | avast_antivirus_home | 4.8.1201 |
| avast | avast_antivirus_home | 4.8.1227 |
| avast | avast_antivirus_home | 4.8.1229 |
| avast | avast_antivirus_home | 4.8.1282 |
| avast | avast_antivirus_home | 4.8.1290 |
| avast | avast_antivirus_home | 4.8.1296 |
| avast | avast_antivirus_home | 4.8.1335 |
| avast | avast_antivirus_home | 4.8.1351 |
| avast | avast_antivirus_home | 4.8.1368.0 |
| avast | avast_antivirus_professional | 𝑥 ≤ 5.0.396.0 |
| avast | avast_antivirus_professional | 4.8.1169 |
| avast | avast_antivirus_professional | 4.8.1195 |
| avast | avast_antivirus_professional | 4.8.1201 |
| avast | avast_antivirus_professional | 4.8.1227 |
| avast | avast_antivirus_professional | 4.8.1229 |
| avast | avast_antivirus_professional | 4.8.1282 |
| avast | avast_antivirus_professional | 4.8.1290 |
| avast | avast_antivirus_professional | 4.8.1296 |
| avast | avast_antivirus_professional | 4.8.1335 |
| avast | avast_antivirus_professional | 4.8.1351 |
| avast | avast_antivirus_professional | 4.8.1356.0 |
| avast | avast_antivirus_professional | 4.8.1368.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References