2 matches found
avast! Professional Edition < 4.8.1356 Multiple Vulnerabilities
The remote Windows host is running avast! Professional Edition. The installed version of avast! Professional Edition is potentially affected by multiple issues : - A local privilege escalation vulnerability because the 'avast4.ini' file is created with insecure permissions on setup. CVE-2009-3524...
CVE-2009-3522
CVE-2009-3522 concerns a stack-based buffer overflow in the aswMon2.sys driver of Avast! for Windows (as used in Home/Professional up to 4.8.1355). The vulnerability occurs when processing a crafted IOCTL request (IOCTL 0xb2c80018), allowing local users to crash the system (denial of service) and...