5 matches found
CVE-2010-5152
CVE-2010-5152 concerns AVG Internet Security 9.0.791 on Windows XP. It describes a race condition enabling local users to bypass kernel‑mode hook handlers by making certain user‑space memory changes during hook‑handler execution, known as an argument‑switch or KHOBE attack. Some third parties dis...
CVE-2017-5566
CVE-2017-5566 affects AVG Ultimate 17.1 and earlier, AVG Internet Security 17.1 and earlier, and AVG AntiVirus FREE 17.1 and earlier. The issue is a local code-injection vulnerability (DoubleAgent) that bypasses AVG’s self-protection by abusing Windows Application Verifier DLL loading via an Imag...
CVE-2024-6510
AVG Internet Security for Windows v24 is affected by a local privilege escalation described as COM-Hijacking. The issue enables a local unprivileged user to escalate to SYSTEM through compromised COM interactions. Affected component/behavior and root cause are described in multiple sources (inclu...
CVE-2015-8578
AVG Internet Security 2015 is affected by an information disclosure/vulnerability where memory is allocated with Read, Write, Execute (RWX) permissions at predictable addresses when protecting user‑mode processes. This RWX/predictable-address pattern enables bypassing DEP and ASLR protections via...
CVE-2014-9632
The CVE-2014-9632 entry affects AVG Internet Security/Protection: the TDI driver avgtdix.sys allows local privilege escalation by writing to arbitrary memory via a crafted 0x830020f8 IOCTL. Affected: AVG Internet Security 2013.x before 2013.3495 Hot Fix 18 and 2015.x before 2015.5315, Protection ...