Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:12573
HistoryNov 05, 2009 - 12:00 a.m.

Avast! Antivirus aavmKer4.sys驱动本地权限提升漏洞

2009-11-0500:00:00
Root
www.seebug.org
11

0.0004 Low

EPSS

Percentile

5.1%

JSON

BUGTRAQ ID: 36888
CVE(CAN) ID: CVE-2009-3523

Avast! Antivirus是ALMIL公司开发的杀毒软件。

Avast! Antivirus的AavmKer4.sys内核驱动没有正确地处理IOCTL(0xB2D6000C和0xB2D60034)请求,驱动将不可信任的用户态代码传送给了内核地址用作参数,本地用户通过特制的IOCTL调用就可以执行任意内核态指令。

ALWIL Software Avast! Antivirus 4.8
厂商补丁:

ALWIL Software

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.avast.com/eng/avast-4-home_pro-revision-history.html


                                                http://www.ntinternals.org/ntiadv0904/AavmKer4_Exp.zip

Related

prion 1
cvelist 1
nvd 1
cve 1
openvas 2
nessus 1
prion
prion
Memory corruption
2009-10-01 17:00:00
cvelist
cvelist
CVE-2009-3523
2009-10-01 16:00:00
nvd
nvd
CVE-2009-3523
2009-10-01 17:00:00
cve
cve
CVE-2009-3523
2009-10-01 17:00:00
openvas
openvas
avast! Multiple Vulnerabilities - Oct09 (Windows)
2009-10-08 00:00:00
avast! Multiple Vulnerabilities (Oct 2009) - Windows
2009-10-08 00:00:00
nessus
nessus
avast! Professional Edition < 4.8.1356 Multiple Vulnerabilities
2009-10-27 00:00:00

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for SSV:12573
prion1cvelist1nvd1cve1openvas2nessus1